vulnerability
Ubuntu: USN-6976-1 (CVE-2021-47171): Linux kernel vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:S/C:N/I:N/A:C) | Mar 25, 2024 | Nov 19, 2024 | Jan 28, 2025 |
Severity
5
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:C)
Published
Mar 25, 2024
Added
Nov 19, 2024
Modified
Jan 28, 2025
Description
In the Linux kernel, the following vulnerability has been resolved:
net: usb: fix memory leak in smsc75xx_bind
Syzbot reported memory leak in smsc75xx_bind().
The problem was is non-freed memory in case of
errors after memory allocation.
backtrace:
[] kmalloc include/linux/slab.h:556 [inline]
[] kzalloc include/linux/slab.h:686 [inline]
[] smsc75xx_bind+0x7a/0x334 drivers/net/usb/smsc75xx.c:1460
[] usbnet_probe+0x3b6/0xc30 drivers/net/usb/usbnet.c:1728
Solution(s)
ubuntu-upgrade-linux-image-4-4-0-1135-awsubuntu-upgrade-linux-image-4-4-0-1136-kvmubuntu-upgrade-linux-image-4-4-0-1173-awsubuntu-upgrade-linux-image-4-4-0-258-genericubuntu-upgrade-linux-image-4-4-0-258-lowlatencyubuntu-upgrade-linux-image-awsubuntu-upgrade-linux-image-genericubuntu-upgrade-linux-image-generic-lts-xenialubuntu-upgrade-linux-image-kvmubuntu-upgrade-linux-image-lowlatencyubuntu-upgrade-linux-image-lowlatency-lts-xenialubuntu-upgrade-linux-image-virtualubuntu-upgrade-linux-image-virtual-lts-xenial
References
- CVE-2021-47171
- https://attackerkb.com/topics/CVE-2021-47171
- UBUNTU-USN-6976-1
- URL-https://git.kernel.org/stable/c/200dbfcad8011e50c3cec269ed7b980836eeb1fa
- URL-https://git.kernel.org/stable/c/22c840596af0c09068b6cf948616e6496e59e07f
- URL-https://git.kernel.org/stable/c/46a8b29c6306d8bbfd92b614ef65a47c900d8e70
- URL-https://git.kernel.org/stable/c/635ac38b36255d3cfb8312cf7c471334f4d537e0
- URL-https://git.kernel.org/stable/c/70c886ac93f87ae7214a0c69151a28a8075dd95b
- URL-https://git.kernel.org/stable/c/9e6a3eccb28779710cbbafc4f4258d92509c6d07
- URL-https://git.kernel.org/stable/c/9e6b8c1ff9d997e1fa16cbd2d60739adf6dc1bbc
- URL-https://git.kernel.org/stable/c/b95fb96e6339e34694dd578fb6bde3575b01af17
- URL-https://ubuntu.com/security/notices/USN-6976-1
- URL-https://www.cve.org/CVERecord?id=CVE-2021-47171
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.