CVE-2021-47093

Summary

In the Linux kernel, the following vulnerability has been resolved:

platform/x86: intel_pmc_core: fix memleak on registration failure

In case device registration fails during module initialisation, the platform device structure needs to be freed using platform_device_put() to properly free all resources (e.g. the device name).

Affected Software

VendorProductVersion RangeStatus
LinuxLinux938835aa903ae19ad62805134f79bbcf20fc3bea < 7a37f2e370699e2feca3dca6c8178c71ceee7e8aaffected
LinuxLinux938835aa903ae19ad62805134f79bbcf20fc3bea < 9ca1324755f1f8629a370af5cc315b175331f5d1affected
LinuxLinux938835aa903ae19ad62805134f79bbcf20fc3bea < 26a8b09437804fabfb1db080d676b96c0de68e7caffected
LinuxLinux5.9affected
LinuxLinux0 < 5.9unaffected
LinuxLinux5.10.89 <= 5.10.*unaffected
LinuxLinux5.15.12 <= 5.15.*unaffected
LinuxLinux5.16 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References