vulnerability
Debian: CVE-2021-47180: linux -- security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:S/C:N/I:N/A:C) | 03/25/2024 | 07/30/2024 | 01/30/2025 |
Description
In the Linux kernel, the following vulnerability has been resolved:
NFC: nci: fix memory leak in nci_allocate_device
nfcmrvl_disconnect fails to free the hci_dev field in struct nci_dev.
Fix this by freeing hci_dev in nci_free_device.
BUG: memory leak
unreferenced object 0xffff888111ea6800 (size 1024):
comm "kworker/1:0", pid 19, jiffies 4294942308 (age 13.580s)
hex dump (first 32 bytes):
00 00 00 00 00 00 00 00 00 60 fd 0c 81 88 ff ff .........`......
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
backtrace:
[] kmalloc include/linux/slab.h:552 [inline]
[] kzalloc include/linux/slab.h:682 [inline]
[] nci_hci_allocate+0x21/0xd0 net/nfc/nci/hci.c:784
[] nci_allocate_device net/nfc/nci/core.c:1170 [inline]
[] nci_allocate_device+0x10b/0x160 net/nfc/nci/core.c:1132
[] nfcmrvl_nci_register_dev+0x10a/0x1c0 drivers/nfc/nfcmrvl/main.c:153
[] nfcmrvl_probe+0x223/0x290 drivers/nfc/nfcmrvl/usb.c:345
[] usb_probe_interface+0x177/0x370 drivers/usb/core/driver.c:396
[] really_probe+0x159/0x4a0 drivers/base/dd.c:554
[] driver_probe_device+0x84/0x100 drivers/base/dd.c:740
[] __device_attach_driver+0xee/0x110 drivers/base/dd.c:846
[] bus_for_each_drv+0xb7/0x100 drivers/base/bus.c:431
[] __device_attach+0x122/0x250 drivers/base/dd.c:914
[] bus_probe_device+0xc6/0xe0 drivers/base/bus.c:491
[] device_add+0x5be/0xc30 drivers/base/core.c:3109
[] usb_set_configuration+0x9d9/0xb90 drivers/usb/core/message.c:2164
[] usb_generic_driver_probe+0x8c/0xc0 drivers/usb/core/generic.c:238
[] usb_probe_device+0x5c/0x140 drivers/usb/core/driver.c:293
[] really_probe+0x159/0x4a0 drivers/base/dd.c:554
Solution
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.