CVE-2021-46924

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2021-46924
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-46924.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2021-46924
Downstream
Related
Published
2024-02-27T10:15:07.150Z
Modified
2026-03-13T05:19:21.174967Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

NFC: st21nfca: Fix memory leak in device probe and remove

'phy->pending_skb' is alloced when device probe, but forgot to free in the error handling path and remove path, this cause memory leak as follows:

unreferenced object 0xffff88800bc06800 (size 512): comm "8", pid 11775, jiffies 4295159829 (age 9.032s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000d66c09ce>] __kmallocnodetrackcaller+0x1ed/0x450 [<00000000c93382b3>] kmallocreserve+0x37/0xd0 [<000000005fea522c>] __allocskb+0x124/0x380 [<0000000019f29f9a>] st21nfcahcii2cprobe+0x170/0x8f2

Fix it by freeing 'pending_skb' in error and remove.

References

Affected packages

Git /

Affected ranges

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-46924.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "3.16.0"
            },
            {
                "fixed": "4.14.261"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "4.15.0"
            },
            {
                "fixed": "4.19.224"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "4.20.0"
            },
            {
                "fixed": "5.4.170"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "5.5.0"
            },
            {
                "fixed": "5.10.90"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "5.11.0"
            },
            {
                "fixed": "5.15.13"
            }
        ]
    }
]