CVE-2021-47150

MEDIUM

Linux Kernel < 4.19.193 - Memory Leak

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: net: fec: fix the potential memory leak in fec_enet_init() If the memory allocated for cbd_base is failed, it should free the memory allocated for the queues, otherwise it causes memory leak. And if the memory allocated for the queues is failed, it can return error directly.

References (5)

[Patch] https://git.kernel.org/stable/c/15102886bc8f5f29daaadf2d925591d564c17e9f

[Patch] https://git.kernel.org/stable/c/20255d41ac560397b6a07d8d87dcc5e2efc7672a

[Patch] https://git.kernel.org/stable/c/32a1777fd113335c3f70dc445dffee0ad1c6870f

[Patch] https://git.kernel.org/stable/c/619fee9eb13b5d29e4267cb394645608088c28a8

[Patch] https://git.kernel.org/stable/c/8ee7ef4a57a9e1228b6f345aaa70aa8951c7e9cd

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 0.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401

Status published

Affected Products (4)

linux/linux_kernel < 4.19.193

linux/linux_kernel

linux/linux_kernel

linux/linux_kernel

Timeline

Published Mar 25, 2024

Tracked Since Feb 18, 2026