CVE-2021-47021

MEDIUM

Linux Kernel 5.11.4-5.11.20, 5.12 - Use-After-Free in mt7915 Device Unregistration

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: mt76: mt7915: fix memleak when mt7915_unregister_device() mt7915_tx_token_put() should get call before mt76_free_pending_txwi().

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/81483309ce861a9fa7835322787f68a443fea364

Patch

https://git.kernel.org/stable/c/d754c80ae82a662e692a82faad71b8c218cb7f52

Patch

https://git.kernel.org/stable/c/e9d32af478cfc3744a45245c0b126738af4b3ac4

Scores

CVSS v3 5.5

EPSS 0.0024

EPSS Percentile 14.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-401

Status published

Products (10)

Linux/Linux < 5.12

Linux/Linux 4e9e896f81932e337a93ad61cd3d9647571c4637 - 81483309ce861a9fa7835322787f68a443fea364

Linux/Linux 5.11.21 - 5.11.*

Linux/Linux 5.11.4 - 5.11.21

Linux/Linux 5.12

Linux/Linux 5.12.4 - 5.12.*

Linux/Linux 5.13

Linux/Linux f285dfb98562e8380101095d168910df1d07d8be - d754c80ae82a662e692a82faad71b8c218cb7f52

Linux/Linux f285dfb98562e8380101095d168910df1d07d8be - e9d32af478cfc3744a45245c0b126738af4b3ac4

linux/linux_kernel 5.11.4 - 5.11.21

Published Feb 28, 2024

Tracked Since Feb 18, 2026