Lucene search

K
cve416baaa9-dc9f-4396-8d5f-8c081fb06d67CVE-2021-47344
HistoryMay 21, 2024 - 3:15 p.m.

CVE-2021-47344

2024-05-2115:15:21
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
29
linux kernel
memory leak
media driver
zr364xx

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.0%

In the Linux kernel, the following vulnerability has been resolved:

media: zr364xx: fix memory leak in zr364xx_start_readpipe

syzbot reported memory leak in zr364xx driver.
The problem was in non-freed urb in case of
usb_submit_urb() fail.

backtrace:
[<ffffffff82baedf6>] kmalloc include/linux/slab.h:561 [inline]
[<ffffffff82baedf6>] usb_alloc_urb+0x66/0xe0 drivers/usb/core/urb.c:74
[<ffffffff82f7cce8>] zr364xx_start_readpipe+0x78/0x130 drivers/media/usb/zr364xx/zr364xx.c:1022
[<ffffffff84251dfc>] zr364xx_board_init drivers/media/usb/zr364xx/zr364xx.c:1383 [inline]
[<ffffffff84251dfc>] zr364xx_probe+0x6a3/0x851 drivers/media/usb/zr364xx/zr364xx.c:1516
[<ffffffff82bb6507>] usb_probe_interface+0x177/0x370 drivers/usb/core/driver.c:396
[<ffffffff826018a9>] really_probe+0x159/0x500 drivers/base/dd.c:576

Affected configurations

Vulners
Node
linuxlinux_kernelRange2.6.324.4.276
OR
linuxlinux_kernelRange4.5.04.9.276
OR
linuxlinux_kernelRange4.10.04.14.240
OR
linuxlinux_kernelRange4.15.04.19.198
OR
linuxlinux_kernelRange4.20.05.4.133
OR
linuxlinux_kernelRange5.5.05.10.51
OR
linuxlinux_kernelRange5.11.05.12.18
OR
linuxlinux_kernelRange5.13.05.13.3
OR
linuxlinux_kernelRange5.14.0

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/media/usb/zr364xx/zr364xx.c"
    ],
    "versions": [
      {
        "version": "ccbf035ae5de",
        "lessThan": "c57b2bd32479",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ccbf035ae5de",
        "lessThan": "bbc80a972a3c",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ccbf035ae5de",
        "lessThan": "b0633051a6cb",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ccbf035ae5de",
        "lessThan": "021c294dff03",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ccbf035ae5de",
        "lessThan": "0edd67591672",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ccbf035ae5de",
        "lessThan": "c57bfd8000d7",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ccbf035ae5de",
        "lessThan": "5f3f81f1c96b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ccbf035ae5de",
        "lessThan": "d69b39d89f36",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "ccbf035ae5de",
        "lessThan": "0a045eac8d04",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/media/usb/zr364xx/zr364xx.c"
    ],
    "versions": [
      {
        "version": "2.6.32",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "2.6.32",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.4.276",
        "lessThanOrEqual": "4.4.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.9.276",
        "lessThanOrEqual": "4.9.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.14.240",
        "lessThanOrEqual": "4.14.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.19.198",
        "lessThanOrEqual": "4.19.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.4.133",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.51",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.12.18",
        "lessThanOrEqual": "5.12.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.13.3",
        "lessThanOrEqual": "5.13.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.14",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.0%