5.5
CVE-2021-47177
- EPSS 0.24%
- Veröffentlicht 25.03.2024 10:15:09
- Zuletzt bearbeitet 17.03.2025 15:20:45
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
iommu/vt-d: Fix sysfs leak in alloc_iommu()
In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix sysfs leak in alloc_iommu() iommu_device_sysfs_add() is called before, so is has to be cleaned on subsequent errors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 4.11 < 4.14.235
Linux ≫ Linux Kernel Version >= 4.15 < 4.19.193
Linux ≫ Linux Kernel Version >= 4.20 < 5.4.124
Linux ≫ Linux Kernel Version >= 5.5 < 5.10.42
Linux ≫ Linux Kernel Version >= 5.11 < 5.12.9
Linux ≫ Linux Kernel Version5.13 Updaterc1
Linux ≫ Linux Kernel Version5.13 Updaterc2
Linux ≫ Linux Kernel Version5.13 Updaterc3
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.24% | 0.146 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-401 Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
https://git.kernel.org/stable/c/044bbe8b92ab4e542de7f6c93c88ea65cccd8e29
https://git.kernel.org/stable/c/0ee74d5a48635c848c20f152d0d488bf84641304
https://git.kernel.org/stable/c/22da9f4978381a99f1abaeaf6c9b83be6ab5ddd8
https://git.kernel.org/stable/c/2ec5e9bb6b0560c90d315559c28a99723c80b996
https://git.kernel.org/stable/c/ca466561eef36d1ec657673e3944eb6340bddb5b
https://git.kernel.org/stable/c/f01134321d04f47c718bb41b799bcdeda27873d2