CVE-2021-47236
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2021-47236
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-47236.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2021-47236
- Downstream
- Related
- Published
- 2024-05-21T15:15:12Z
- Modified
- 2025-08-09T20:01:27Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
net: cdc_eem: fix tx fixup skb leak
when usbnet transmit a skb, eem fixup it in eemtxfixup(), if skbcopyexpand() failed, it return NULL, usbnetstartxmit() will have no chance to free original skb.
fix it by free orginal skb in eemtxfixup() first, then check skb clone status, if failed, return NULL to usbnet.
- References
-
- https://git.kernel.org/stable/c/05b2b9f7d24b5663d9b47427fe1555bdafd3ea02
- https://git.kernel.org/stable/c/14184ec5c958b589ba934da7363a2877879204df
- https://git.kernel.org/stable/c/1bcacd6088d61c0ac6a990d87975600a81f3247e
- https://git.kernel.org/stable/c/81de2ed06df8b5451e050fe6a318af3263dbff3f
- https://git.kernel.org/stable/c/b4f7a9fc9d094c0c4a66f2ad7c37b1dbe9e78f88
- https://git.kernel.org/stable/c/c3b26fdf1b32f91c7a3bc743384b4a298ab53ad7
- https://git.kernel.org/stable/c/f12554b0ff639e74612cc01b3b4a049e098d2d65
- https://git.kernel.org/stable/c/f4e6a7f19c82f39b1803e91c54718f0d7143767d