CVE-2021-47313

Summary

In the Linux kernel, the following vulnerability has been resolved:

cpufreq: CPPC: Fix potential memleak in cppc_cpufreq_cpu_init

It's a classic example of memleak, we allocate something, we fail and never free the resources.

Make sure we free all resources on policy ->init() failures.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa28b2bfc099c6b9caa6ef697660408e076a32019 < b775383355755885b19d2acef977f1ca132e80a3affected
LinuxLinuxa28b2bfc099c6b9caa6ef697660408e076a32019 < e1b2b2b61d30d7ce057ec17237c217d152ed97f2affected
LinuxLinuxa28b2bfc099c6b9caa6ef697660408e076a32019 < fe2535a44904a77615a3af8e8fd7dafb98fb0e1baffected
LinuxLinux5.11affected
LinuxLinux0 < 5.11unaffected
LinuxLinux5.12.19 <= 5.12.*unaffected
LinuxLinux5.13.4 <= 5.13.*unaffected
LinuxLinux5.14 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References