Lucene search

K
cve416baaa9-dc9f-4396-8d5f-8c081fb06d67CVE-2021-47499
HistoryMay 24, 2024 - 3:15 p.m.

CVE-2021-47499

2024-05-2415:15:09
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
27
linux kernel
vulnerability
cve-2021-47499
memory leak
iio accel
kxcjk-1013
fix
memory allocated
acpi_smo8500
data->dready_trig
probe
remove
nvd

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.0%

In the Linux kernel, the following vulnerability has been resolved:

iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove

When ACPI type is ACPI_SMO8500, the data->dready_trig will not be set, the
memory allocated by iio_triggered_buffer_setup() will not be freed, and cause
memory leak as follows:

unreferenced object 0xffff888009551400 (size 512):
comm “i2c-SMO8500-125”, pid 911, jiffies 4294911787 (age 83.852s)
hex dump (first 32 bytes):
02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 …
00 00 00 00 00 00 00 00 20 e2 e5 c0 ff ff ff ff … …
backtrace:
[<0000000041ce75ee>] kmem_cache_alloc_trace+0x16d/0x360
[<000000000aeb17b0>] iio_kfifo_allocate+0x41/0x130 [kfifo_buf]
[<000000004b40c1f5>] iio_triggered_buffer_setup_ext+0x2c/0x210 [industrialio_triggered_buffer]
[<000000004375b15f>] kxcjk1013_probe+0x10c3/0x1d81 [kxcjk_1013]

Fix it by remove data->dready_trig condition in probe and remove.

Affected configurations

Vulners
Node
linuxlinux_kernelRange4.24.4.295
OR
linuxlinux_kernelRange4.5.04.9.293
OR
linuxlinux_kernelRange4.10.04.14.258
OR
linuxlinux_kernelRange4.15.04.19.221
OR
linuxlinux_kernelRange4.20.05.4.165
OR
linuxlinux_kernelRange5.5.05.10.85
OR
linuxlinux_kernelRange5.11.05.15.8
OR
linuxlinux_kernelRange5.16.0

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/iio/accel/kxcjk-1013.c"
    ],
    "versions": [
      {
        "version": "a25691c1f967",
        "lessThan": "8c1d43f3a3fc",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a25691c1f967",
        "lessThan": "60a55b9d91ba",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a25691c1f967",
        "lessThan": "3899700ddacb",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a25691c1f967",
        "lessThan": "a3730f74159a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a25691c1f967",
        "lessThan": "8c163a142771",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a25691c1f967",
        "lessThan": "ee86d0bad80b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a25691c1f967",
        "lessThan": "14508fe13b1c",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a25691c1f967",
        "lessThan": "70c9774e180d",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/iio/accel/kxcjk-1013.c"
    ],
    "versions": [
      {
        "version": "4.2",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "4.2",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.4.295",
        "lessThanOrEqual": "4.4.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.9.293",
        "lessThanOrEqual": "4.9.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.14.258",
        "lessThanOrEqual": "4.14.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.19.221",
        "lessThanOrEqual": "4.19.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.4.165",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.85",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.15.8",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.16",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.0%