CVE-2021-47074

Summary

In the Linux kernel, the following vulnerability has been resolved:

nvme-loop: fix memory leak in nvme_loop_create_ctrl()

When creating loop ctrl in nvme_loop_create_ctrl(), if nvme_init_ctrl() fails, the loop ctrl should be freed before jumping to the "out" label.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux3a85a5de29ea779634ddfd768059e06196687aba < 9c980795ccd77e8abec33dd6fe28dfe1c4083e65affected
LinuxLinux3a85a5de29ea779634ddfd768059e06196687aba < 551ba08d4b7eb26f75758cdb9f15105b276517adaffected
LinuxLinux3a85a5de29ea779634ddfd768059e06196687aba < 03504e3b54cc8118cc26c064e60a0b00c2308708affected
LinuxLinux4.8affected
LinuxLinux0 < 4.8unaffected
LinuxLinux5.10.40 <= 5.10.*unaffected
LinuxLinux5.12.7 <= 5.12.*unaffected
LinuxLinux5.13 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References