vulnerability

Red Hat: CVE-2021-47171: kernel: net: usb: fix memory leak in smsc75xx_bind (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:L/AC:L/Au:M/C:C/I:N/A:N)	03/25/2024	06/06/2024	06/06/2024

Severity

CVSS

(AV:L/AC:L/Au:M/C:C/I:N/A:N)

Published

03/25/2024

Added

06/06/2024

Modified

06/06/2024

Description

In the Linux kernel, the following vulnerability has been resolved:

net: usb: fix memory leak in smsc75xx_bind

Syzbot reported memory leak in smsc75xx_bind().
The problem was is non-freed memory in case of
errors after memory allocation.

backtrace:
[] kmalloc include/linux/slab.h:556 [inline]
[] kzalloc include/linux/slab.h:686 [inline]
[] smsc75xx_bind+0x7a/0x334 drivers/net/usb/smsc75xx.c:1460
[] usbnet_probe+0x3b6/0xc30 drivers/net/usb/usbnet.c:1728

Solution(s)

redhat-upgrade-kernelredhat-upgrade-kernel-rt

References

NVD-CVE-2021-47171
REDHAT-RHSA-2024:3618
REDHAT-RHSA-2024:3627

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today