Lucene search
416baaa9-dc9f-4396-8d5f-8c081fb06d67CVE-2021-47024HistoryFeb 28, 2024 - 9:15 a.m.
CVE-2021-47024
2024-02-2809:15:39
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
712
linux kernel
vsock
virtio
vulnerability
cve-2021-47024
memory leak
socket
security
nvd
In the Linux kernel, the following vulnerability has been resolved:
vsock/virtio: free queued packets when closing socket
As reported by syzbot [1], there is a memory leak while closing the
socket. We partially solved this issue with commit ac03046ece2b
(“vsock/virtio: free packets during the socket release”), but we
forgot to drain the RX queue when the socket is definitely closed by
the scheduled work.
To avoid future issues, let’s use the new virtio_transport_remove_sock()
to drain the RX queue before removing the socket from the af_vsock lists
calling vsock_remove_sock().
[1] https://syzkaller.appspot.com/bug?extid=24452624fc4c571eedd9
Affected configurations
Node
linuxlinux_kernelRange5.2–5.10.37
ORlinuxlinux_kernelRange5.11.0–5.11.21
ORlinuxlinux_kernelRange5.12.0–5.12.4
ORlinuxlinux_kernelRange5.13.0≥
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"net/vmw_vsock/virtio_transport_common.c"
],
"versions": [
{
"version": "ac03046ece2b",
"lessThan": "b605673b523f",
"status": "affected",
"versionType": "git"
},
{
"version": "ac03046ece2b",
"lessThan": "27691665145e",
"status": "affected",
"versionType": "git"
},
{
"version": "ac03046ece2b",
"lessThan": "37c38674ef2f",
"status": "affected",
"versionType": "git"
},
{
"version": "ac03046ece2b",
"lessThan": "8432b8114957",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"net/vmw_vsock/virtio_transport_common.c"
],
"versions": [
{
"version": "5.2",
"status": "affected"
},
{
"version": "0",
"lessThan": "5.2",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.10.37",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.11.21",
"lessThanOrEqual": "5.11.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.12.4",
"lessThanOrEqual": "5.12.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.13",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]Related
debiancve
debiancve
CVE-2021-47024
2024-02-28 09:15:39
prion
prion
Design/Logic Flaw
2024-02-28 09:15:00
ubuntucve
ubuntucve
CVE-2021-47024
2024-02-28 00:00:00
nvd
nvd
CVE-2021-47024
2024-02-28 09:15:39
cvelist
cvelist
CVE-2021-47024 vsock/virtio: free queued packets when closing socket
2024-02-28 08:13:36
redhatcve
redhatcve
CVE-2021-47024
2024-02-29 10:08:05
vulnrichment
vulnrichment
CVE-2021-47024 vsock/virtio: free queued packets when closing socket
2024-02-28 08:13:36
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1570)
2024-05-10 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1643-1)
2024-05-15 00:00:00
nessus
nessus
EulerOS 2.0 SP10 : kernel (EulerOS-SA-2024-1570)
2024-05-09 00:00:00
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2024:1648-1)
2024-05-15 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2024:1646-1)
2024-05-15 00:00:00