CVE-2021-47442

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2021-47442
In the Linux kernel, the following vulnerability has been resolved: NFC: digital: fix possible memory leak in digital_in_send_sdd_req() 'skb' is allocated in digital_in_send_sdd_req(), but not free when digital_in_send_cmd() failed, which will cause memory leak. Fix it by freeing 'skb' if digital_in_send_cmd() return failed.

5.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://git.kernel.org/stable/c/071bdef36391958c89af5fa2172f691b31baa212 Patch
https://git.kernel.org/stable/c/291c932fc3692e4d211a445ba8aa35663831bac7 Patch
https://git.kernel.org/stable/c/2bde4aca56db9fe25405d39ddb062531493a65db Patch
https://git.kernel.org/stable/c/50cb95487c265187289810addec5093d4fed8329 Patch
https://git.kernel.org/stable/c/6432d7f1d1c3aa74cfe8f5e3afdf81b786c32e86 Patch
https://git.kernel.org/stable/c/74569c78aa84f8c958f1334b465bc530906ec99a Patch
https://git.kernel.org/stable/c/88c890b0b9a1fb9fcd01c61ada515e8b636c34f9 Patch
https://git.kernel.org/stable/c/fcce6e5255474ca33c27dda0cdf9bf5087278873 Patch
https://git.kernel.org/stable/c/071bdef36391958c89af5fa2172f691b31baa212 Patch
https://git.kernel.org/stable/c/291c932fc3692e4d211a445ba8aa35663831bac7 Patch
https://git.kernel.org/stable/c/2bde4aca56db9fe25405d39ddb062531493a65db Patch
https://git.kernel.org/stable/c/50cb95487c265187289810addec5093d4fed8329 Patch
https://git.kernel.org/stable/c/6432d7f1d1c3aa74cfe8f5e3afdf81b786c32e86 Patch
https://git.kernel.org/stable/c/74569c78aa84f8c958f1334b465bc530906ec99a Patch
https://git.kernel.org/stable/c/88c890b0b9a1fb9fcd01c61ada515e8b636c34f9 Patch
https://git.kernel.org/stable/c/fcce6e5255474ca33c27dda0cdf9bf5087278873 Patch
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.15:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.15:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.15:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.15:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.15:rc5:*:*:*:*:*:*
History

No history.

Information

Published : 2024-05-22 07:15

Updated : 2025-01-07 20:14

NVD link : CVE-2021-47442

Mitre link : CVE-2021-47442

CVE.ORG link : CVE-2021-47442

JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-401

Missing Release of Memory after Effective Lifetime