CVE-2021-47529

Summary

In the Linux kernel, the following vulnerability has been resolved:

iwlwifi: Fix memory leaks in error handling path

Should an error occur (invalid TLV len or memory allocation failure), the memory already allocated in 'reduce_power_data' should be freed before returning, otherwise it is leaking.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux9dad325f9d57508b154f0bebbc341a8528e5729c < 4768935c25403ba96e7a745645df24a51a774b7eaffected
LinuxLinux9dad325f9d57508b154f0bebbc341a8528e5729c < a571bc28326d9f3e13f5f2d9cda2883e0631b0ceaffected
LinuxLinux5.14affected
LinuxLinux0 < 5.14unaffected
LinuxLinux5.15.7 <= 5.15.*unaffected
LinuxLinux5.16 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References