CVE-2021-47053

MEDIUM

Linux Kernel - Use-After-Free in crypto: sun8i-ss

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: sun8i-ss - Fix memory leak of pad It appears there are several failure return paths that don't seem to be free'ing pad. Fix these. Addresses-Coverity: ("Resource leak")

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/2c67a9333da9d0a3b87310e0d116b7c9070c7b00

Patch

https://git.kernel.org/stable/c/c633e025bd04f54d7b33331cfcdb71354b08ce59

Patch

https://git.kernel.org/stable/c/d3d702084d125689edb2b9395c707e09b471352e

Patch

https://git.kernel.org/stable/c/50274b01ac1689b1a3f6bc4b5b3dbf361a55dd3a

Scores

CVSS v3 5.5

EPSS 0.0024

EPSS Percentile 14.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-401

Status published

Products (11)

Linux/Linux < 5.10

Linux/Linux 5.10

Linux/Linux 5.10.37 - 5.10.*

Linux/Linux 5.11.21 - 5.11.*

Linux/Linux 5.12.4 - 5.12.*

Linux/Linux 5.13

Linux/Linux d9b45418a91773b7672e4c60037a28074b495c6d - 2c67a9333da9d0a3b87310e0d116b7c9070c7b00

Linux/Linux d9b45418a91773b7672e4c60037a28074b495c6d - 50274b01ac1689b1a3f6bc4b5b3dbf361a55dd3a

Linux/Linux d9b45418a91773b7672e4c60037a28074b495c6d - c633e025bd04f54d7b33331cfcdb71354b08ce59

Linux/Linux d9b45418a91773b7672e4c60037a28074b495c6d - d3d702084d125689edb2b9395c707e09b471352e

... and 1 more

Published Feb 28, 2024

Tracked Since Feb 18, 2026