PT-2024-11218 · Linux+7 · Linux Kernel+7

Syzbot

Published

2021-05-24

Updated

2024-08-21

CVE-2021-47171

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak has been resolved in the Linux kernel, specifically in the smsc75xx bind() function. The issue occurred due to non-freed memory in case of errors after memory allocation. The problem was reported by Syzbot. Technical details about the issue include the involvement of kmalloc and kzalloc functions, as well as the smsc75xx bind and usbnet probe functions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-402CWE-401

Related Identifiers

ALSA-2024:3618

ALSA-2024:3627

BDU:2025-07364

CESA-2024_3618

CESA-2024_3627

CVE-2021-47171

INFSA-2024_3618

INFSA-2024_3627

OESA-2024-1483

OESA-2024-1484

OPENSUSE-SU-2024_1489-1

RHSA-2024:3618

RHSA-2024:3627

RHSA-2024_3618

RHSA-2024_3627

RLSA-2024:3618

RLSA-2024:3627

SUSE-SU-2024:1454-1

SUSE-SU-2024:1465-1

SUSE-SU-2024:1489-1

SUSE-SU-2024:1643-1

SUSE-SU-2024:1646-1

SUSE-SU-2024:1870-1

SUSE-SU-2024:1979-1

SUSE-SU-2024:1983-1

SUSE-SU-2024:2184-1

USN-6976-1

Affected Products

Almalinux

Astra Linux

Centos

Linux Kernel

Red Hat

Rocky Linux

Suse

Ubuntu

PT-2024-11218 · Linux+7 · Linux Kernel+7

CVE-2021-47171

Weakness Enumeration

Related Identifiers

Affected Products

References · 1256