PT-2024-11399 · Linux+2 · Linux Kernel+2

Johan Hovold

Published

2021-09-27

Updated

2024-08-16

CVE-2021-47403

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A module reference leak was found in the Linux kernel, specifically in the ipack: ipoctal module. The issue occurred because a reference to the carrier module was taken on every open but was only released once when the final reference to the tty struct was dropped. This has been fixed by taking the module reference and initialising the tty driver data when installing the tty.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-401

Related Identifiers

BDU:2025-07494

CVE-2021-47403

OESA-2024-1705

OPENSUSE-SU-2024_2189-1

SUSE-SU-2024:2008-1

SUSE-SU-2024:2011-1

SUSE-SU-2024:2019-1

SUSE-SU-2024:2189-1

SUSE-SU-2024:2190-1

SUSE-SU-2024:2892-1

SUSE-SU-2024:2901-1

SUSE-SU-2024:2940-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2024-11399 · Linux+2 · Linux Kernel+2

CVE-2021-47403

Weakness Enumeration

Related Identifiers

Affected Products

References · 1606