5.5
CVE-2021-47258
- EPSS 0.24%
- Veröffentlicht 21.05.2024 15:15:14
- Zuletzt bearbeitet 30.04.2025 15:05:14
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
scsi: core: Fix error handling of scsi_host_alloc()
In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix error handling of scsi_host_alloc() After device is initialized via device_initialize(), or its name is set via dev_set_name(), the device has to be freed via put_device(). Otherwise device name will be leaked because it is allocated dynamically in dev_set_name(). Fix the leak by replacing kfree() with put_device(). Since scsi_host_dev_release() properly handles IDA and kthread removal, remove special-casing these from the error handling as well.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version < 4.9.273
Linux ≫ Linux Kernel Version >= 4.10 < 4.14.237
Linux ≫ Linux Kernel Version >= 4.15 < 4.19.195
Linux ≫ Linux Kernel Version >= 4.20 < 5.4.126
Linux ≫ Linux Kernel Version >= 5.5 < 5.10.44
Linux ≫ Linux Kernel Version >= 5.11 < 5.12.11
Linux ≫ Linux Kernel Version5.13 Updaterc1
Linux ≫ Linux Kernel Version5.13 Updaterc2
Linux ≫ Linux Kernel Version5.13 Updaterc3
Linux ≫ Linux Kernel Version5.13 Updaterc4
Linux ≫ Linux Kernel Version5.13 Updaterc5
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.24% | 0.143 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-401 Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
https://git.kernel.org/stable/c/2dc85045ae65b9302a1d2e2ddd7ce4c030153a6a
https://git.kernel.org/stable/c/45d83db4728127944b237c0c8248987df9d478e7
https://git.kernel.org/stable/c/66a834d092930cf41d809c0e989b13cd6f9ca006
https://git.kernel.org/stable/c/79296e292d67fa7b5fb8d8c27343683e823872c8
https://git.kernel.org/stable/c/7a696ce1d5d16a33a6cd6400bbcc0339b2460e11
https://git.kernel.org/stable/c/8958181c1663e24a13434448e7d6b96b5d04900a
https://git.kernel.org/stable/c/db08ce595dd64ea9859f7d088b51cbfc8e685c66