CVE-2021-47367

MEDIUM

Linux Kernel 5.13-5.14.9 - Memory Leak in virtio-net Big Mode SKB Building

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix pages leaking when building skb in big mode We try to use build_skb() if we had sufficient tailroom. But we forget to release the unused pages chained via private in big mode which will leak pages. Fixing this by release the pages after building the skb in big mode.

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/f020bb63b5d2e5576acadd10e158fe3b04af67ba

Patch

https://git.kernel.org/stable/c/afd92d82c9d715fb97565408755acad81573591a

Scores

CVSS v3 5.5

EPSS 0.0023

EPSS Percentile 13.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-119

Status published

Products (8)

Linux/Linux < 5.13

Linux/Linux 5.13

Linux/Linux 5.14.9 - 5.14.*

Linux/Linux 5.15

Linux/Linux fb32856b16ad9d5bcd75b76a274e2c515ac7b9d7 - afd92d82c9d715fb97565408755acad81573591a

Linux/Linux fb32856b16ad9d5bcd75b76a274e2c515ac7b9d7 - f020bb63b5d2e5576acadd10e158fe3b04af67ba

linux/linux_kernel 5.15 rc1 (2 CPE variants)

linux/linux_kernel 5.13 - 5.14.9

Published May 21, 2024

Tracked Since Feb 18, 2026