CVE-2021-47523

2024-05-2415:15:14

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

linux kernel

vulnerability

resolved

buffer

allocation

deallocation

hfi1

memory leak

AI Score

6.7

Confidence

Low

EPSS

Percentile

15.5%

JSON

In the Linux kernel, the following vulnerability has been resolved:

IB/hfi1: Fix leak of rcvhdrtail_dummy_kvaddr

This buffer is currently allocated in hfi1_init():

if (reinit)
	ret = init_after_reset(dd);
else
	ret = loadtime_init(dd);
if (ret)
	goto done;

/* allocate dummy tail memory for all receive contexts */
dd-&gt;rcvhdrtail_dummy_kvaddr = dma_alloc_coherent(&dd-&gt;pcidev-&gt;dev,
						 sizeof(u64),
						 &dd-&gt;rcvhdrtail_dummy_dma,
						 GFP_KERNEL);

if (!dd-&gt;rcvhdrtail_dummy_kvaddr) {
	dd_dev_err(dd, "cannot allocate dummy tail memory\n");
	ret = -ENOMEM;
	goto done;
}

The reinit triggered path will overwrite the old allocation and leak it.

Fix by moving the allocation to hfi1_alloc_devdata() and the deallocation
to hfi1_free_devdata().