CVE-2021-47525

Summary

In the Linux kernel, the following vulnerability has been resolved:

serial: liteuart: fix use-after-free and memleak on unbind

Deregister the port when unbinding the driver to prevent it from being used after releasing the driver data and leaking memory allocated by serial core.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1da81e5562fac8286567422cc56a7fbd0dc646d4 < 602824cf9aa9db8830ffe5cfb2cd54365cada4feaffected
LinuxLinux1da81e5562fac8286567422cc56a7fbd0dc646d4 < 05f929b395dec8957b636ff14e66b277ed022ed9affected
LinuxLinux5.11affected
LinuxLinux0 < 5.11unaffected
LinuxLinux5.15.7 <= 5.15.*unaffected
LinuxLinux5.16 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References