Security Advisory

CVE-2021-47039

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-28 08:13:45
Last updated 2026-05-11 13:46:46
Assigner Linux
State PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ataflop: potential out of bounds in do_format() The function uses "type" as an array index: q = unit[drive].disk[type]->queue; Unfortunately the bounds check on "type" isnt done until later in the function. Fix this by moving the bounds check to the start.