CVE-2021-47176

s390/dasd: add missing discipline function

Description

In the Linux kernel, the following vulnerability has been resolved: s390/dasd: add missing discipline function Fix crash with illegal operation exception in dasd_device_tasklet. Commit b72949328869 ("s390/dasd: Prepare for additional path event handling") renamed the verify_path function for ECKD but not for FBA and DIAG. This leads to a panic when the path verification function is called for a FBA or DIAG device. Fix by defining a wrapper function for dasd_generic_verify_path().

5.5
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.02%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/6a16810068e70959bc1df686424aa35ce05578f1 patch
https://git.kernel.org/stable/c/aa8579bc084673c651204f7cd0d6308a47dffc16 patch
https://git.kernel.org/stable/c/a16be88a3d7e5efcb59a15edea87a8bd369630c6 patch
https://git.kernel.org/stable/c/c0c8a8397fa8a74d04915f4d3d28cb4a5d401427 patch

Frequently Asked Questions

What is the severity of CVE-2021-47176?
CVE-2021-47176 has been scored as a medium severity vulnerability.
How to fix CVE-2021-47176?
To fix CVE-2021-47176, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2021-47176 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2021-47176 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2021-47176?
CVE-2021-47176 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.