CVE-2021-47426

MEDIUM

Linux Kernel - Use-After-Free in BPF JIT Data Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: bpf, s390: Fix potential memory leak about jit_data Make sure to free jit_data through kfree() in the error path.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/a326f9c01cfbee4450ae49ce618ae6cbc0f76842

Patch

https://git.kernel.org/stable/c/29fdb11ca88d3c490a3d56f0dc77eb9444d086be

Patch

https://git.kernel.org/stable/c/d590a410e472417a22336c7c37685bfb38e801f2

Patch

https://git.kernel.org/stable/c/686cb8b9f6b46787f035afe8fbd132a74e6b1bdd

Scores

CVSS v3 5.5

EPSS 0.0022

EPSS Percentile 12.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-401

Status published

Products (12)

Linux/Linux < 5.4

Linux/Linux 1c8f9b91c456f5b47a377a0c8c5d4130fc39433a - 29fdb11ca88d3c490a3d56f0dc77eb9444d086be

Linux/Linux 1c8f9b91c456f5b47a377a0c8c5d4130fc39433a - 686cb8b9f6b46787f035afe8fbd132a74e6b1bdd

Linux/Linux 1c8f9b91c456f5b47a377a0c8c5d4130fc39433a - a326f9c01cfbee4450ae49ce618ae6cbc0f76842

Linux/Linux 1c8f9b91c456f5b47a377a0c8c5d4130fc39433a - d590a410e472417a22336c7c37685bfb38e801f2

Linux/Linux 5.10.73 - 5.10.*

Linux/Linux 5.14.12 - 5.14.*

Linux/Linux 5.15

Linux/Linux 5.4

Linux/Linux 5.4.153 - 5.4.*

... and 2 more

Published May 21, 2024

Tracked Since Feb 18, 2026