CVE-2021-47525

HIGH

Linux Kernel 5.11-5.15.7 - Use-After-Free in LiteUART Unbind

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: serial: liteuart: fix use-after-free and memleak on unbind Deregister the port when unbinding the driver to prevent it from being used after releasing the driver data and leaking memory allocated by serial core.

Scores

CVSS v3 7.8
EPSS 0.0023
EPSS Percentile 13.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-416
Status published
Products (7)
Linux/Linux < 5.11
Linux/Linux 1da81e5562fac8286567422cc56a7fbd0dc646d4 - 05f929b395dec8957b636ff14e66b277ed022ed9
Linux/Linux 1da81e5562fac8286567422cc56a7fbd0dc646d4 - 602824cf9aa9db8830ffe5cfb2cd54365cada4fe
Linux/Linux 5.11
Linux/Linux 5.15.7 - 5.15.*
Linux/Linux 5.16
linux/linux_kernel 5.11 - 5.15.7
Published May 24, 2024
Tracked Since Feb 18, 2026