CVE-2021-46993

sched: Fix out-of-bound access in uclamp

Description

In the Linux kernel, the following vulnerability has been resolved: sched: Fix out-of-bound access in uclamp Util-clamp places tasks in different buckets based on their clamp values for performance reasons. However, the size of buckets is currently computed using a rounding division, which can lead to an off-by-one error in some configurations. For instance, with 20 buckets, the bucket size will be 1024/20=51. A task with a clamp of 1024 will be mapped to bucket id 1024/51=20. Sadly, correct indexes are in range [0,19], hence leading to an out of bound memory access. Clamp the bucket id to fix the issue.

Category

7.1
CVSS
Severity: High
CVSS 3.1 •
EPSS 0.12%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/687f523c134b7f0bd040ee1230f6d17990d54172 patch
https://git.kernel.org/stable/c/f7347c85490b92dd144fa1fba9e1eca501656ab3 patch
https://git.kernel.org/stable/c/3da3f804b82a0a382d523a21acf4cf3bb35f936d patch
https://git.kernel.org/stable/c/42ee47c7e3569d9a0e2cb5053c496d97d380472f patch
https://git.kernel.org/stable/c/6d2f8909a5fabb73fe2a63918117943986c39b6c patch

Frequently Asked Questions

What is the severity of CVE-2021-46993?
CVE-2021-46993 has been scored as a high severity vulnerability.
How to fix CVE-2021-46993?
To fix CVE-2021-46993, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2021-46993 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2021-46993 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2021-46993?
CVE-2021-46993 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.