5.5

CVE-2021-47150

EPSS 0.01%
Published 25.03.2024 09:15:09
Last modified 12.12.2024 15:41:29
Source 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Open
Login

In the Linux kernel, the following vulnerability has been resolved:

net: fec: fix the potential memory leak in fec_enet_init()

If the memory allocated for cbd_base is failed, it should
free the memory allocated for the queues, otherwise it causes
memory leak.

And if the memory allocated for the queues is failed, it can
return error directly.

Affected products Warnungen 0 Metrics 2 CWE 1 References 8

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 3.18 < 4.19.193

Linux ≫ Linux Kernel Version >= 4.20 < 5.4.124

Linux ≫ Linux Kernel Version >= 5.5 < 5.10.42

Linux ≫ Linux Kernel Version >= 5.11 < 5.12.9

Linux ≫ Linux Kernel Version5.13 Updaterc1

Linux ≫ Linux Kernel Version5.13 Updaterc2

Linux ≫ Linux Kernel Version5.13 Updaterc3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.01%	0.007

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

https://git.kernel.org/stable/c/15102886bc8f5f29daaadf2d925591d564c17e9f

Patch

https://git.kernel.org/stable/c/20255d41ac560397b6a07d8d87dcc5e2efc7672a

Patch

https://git.kernel.org/stable/c/32a1777fd113335c3f70dc445dffee0ad1c6870f

Patch

https://git.kernel.org/stable/c/619fee9eb13b5d29e4267cb394645608088c28a8

Patch

https://git.kernel.org/stable/c/8ee7ef4a57a9e1228b6f345aaa70aa8951c7e9cd

Patch

https://nvd.nist.gov/vuln/detail/CVE-2021-47150

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-47150

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-47150

EUVD