CVE-2021-47053

MEDIUM

Linux Kernel < 5.10.37 - Memory Leak

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: sun8i-ss - Fix memory leak of pad It appears there are several failure return paths that don't seem to be free'ing pad. Fix these. Addresses-Coverity: ("Resource leak")

References (4)

[Patch] https://git.kernel.org/stable/c/2c67a9333da9d0a3b87310e0d116b7c9070c7b00

[Patch] https://git.kernel.org/stable/c/50274b01ac1689b1a3f6bc4b5b3dbf361a55dd3a

[Patch] https://git.kernel.org/stable/c/c633e025bd04f54d7b33331cfcdb71354b08ce59

[Patch] https://git.kernel.org/stable/c/d3d702084d125689edb2b9395c707e09b471352e

Scores

CVSS v3 5.5

EPSS 0.0002

EPSS Percentile 4.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401

Status published

Affected Products (1)

linux/linux_kernel < 5.10.37

Timeline

Published Feb 28, 2024

Tracked Since Feb 18, 2026