Lucene search

416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2021-47329

HistoryMay 21, 2024 - 3:15 p.m.

CVE-2021-47329

2024-05-2115:15:19

CWE-400

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

linux kernel

scsi

megaraid_sas

vulnerability

resource leak

pci device

probe

cve-2021-47329

CVSS3

6.2

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.5

Confidence

Low

EPSS

Percentile

15.5%

JSON

In the Linux kernel, the following vulnerability has been resolved:

scsi: megaraid_sas: Fix resource leak in case of probe failure

The driver doesn’t clean up all the allocated resources properly when
scsi_add_host(), megasas_start_aen() function fails during the PCI device
probe.

Clean up all those resources.

References

git.kernel.org/stable/c/04b6b9ea80906e3b41ff120b45db31768947cf72

git.kernel.org/stable/c/0680db6f41920b2c91c7df3cc9cd5968701a6f74

git.kernel.org/stable/c/0c6226601c3e191a44a57d8f9f814b7e5c308959

git.kernel.org/stable/c/b5438f48fdd8e1c3f130d32637511efd32038152

git.kernel.org/stable/c/e623f79691c5104317669ab36ec316a90c05062f

CVSS3

6.2

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.5

Confidence

Low

EPSS

Percentile

15.5%

JSON

Related for NVD:CVE-2021-47329