What is the severity of CVE-2021-47236?

CVE-2021-47236 has been classified as a moderate severity vulnerability in the Linux kernel.

How do I fix CVE-2021-47236?

To fix CVE-2021-47236, upgrade your Linux kernel to versions 4.4.274, 4.9.274, 4.14.238, 4.19.196, 5.4.128, 5.10.46, 5.12.13, or 5.13.

Which systems are affected by CVE-2021-47236?

CVE-2021-47236 affects multiple versions of the Linux kernel and IBM Security Verify Governance up to version 10.0.2.

What components are impacted by CVE-2021-47236?

CVE-2021-47236 specifically impacts the net: cdc_eem component of the Linux kernel.

Is CVE-2021-47236 being actively exploited?

As of now, there is no public indication that CVE-2021-47236 is being actively exploited in the wild.

Vulnerability/
CVE-2021-47236

low

21/5/2024

9/4/2025

CVE-2021-47236: net: cdc_eem: fix tx fixup skb leak

First published: Tue May 21 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: net: cdc_eem: fix tx fixup skb leak The Linux kernel CVE team has assigned <a href="https://access.redhat.com/security/cve/CVE-2021-47236">CVE-2021-47236</a> to this issue. Upstream advisory: <a href="https://lore.kernel.org/linux-cve-announce/2024052140-CVE-2021-47236-c679@gregkh/T">https://lore.kernel.org/linux-cve-announce/2024052140-CVE-2021-47236-c679@gregkh/T</a>

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
redhat/kernel	<4.4.274	4.4.274
redhat/kernel	<4.9.274	4.9.274
redhat/kernel	<4.14.238	4.14.238
redhat/kernel	<4.19.196	4.19.196
redhat/kernel	<5.4.128	5.4.128
redhat/kernel	<5.10.46	5.10.46
redhat/kernel	<5.12.13	5.12.13
redhat/kernel	<5.13	5.13
IBM Security Verify Governance - Identity Manager	<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Software Stack	<=ISVG 10.0.2
IBM Security Verify Governance, Identity Manager Virtual Appliance	<=ISVG 10.0.2
IBM Security Verify Governance Identity Manager Container	<=ISVG 10.0.2

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

IBM-7230443

Frequently Asked Questions

What is the severity of CVE-2021-47236?
CVE-2021-47236 has been classified as a moderate severity vulnerability in the Linux kernel.
How do I fix CVE-2021-47236?
To fix CVE-2021-47236, upgrade your Linux kernel to versions 4.4.274, 4.9.274, 4.14.238, 4.19.196, 5.4.128, 5.10.46, 5.12.13, or 5.13.
Which systems are affected by CVE-2021-47236?
CVE-2021-47236 affects multiple versions of the Linux kernel and IBM Security Verify Governance up to version 10.0.2.
What components are impacted by CVE-2021-47236?
CVE-2021-47236 specifically impacts the net: cdc_eem component of the Linux kernel.
Is CVE-2021-47236 being actively exploited?
As of now, there is no public indication that CVE-2021-47236 is being actively exploited in the wild.

agent/title
agent/type
agent/first-publish-date
collector/nvd-api
source/NVD
agent/author
agent/severity
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2021-47236
agent/software-canonical-lookup
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/references
agent/source
agent/softwarecombine
agent/description
agent/tags
agent/event
collector/ibm-support
source/IBM
agent/software-canonical-lookup-request
package-manager/redhat
vendor/ibm
canonical/ibm security verify governance - identity manager
version/ibm security verify governance - identity manager/isvg 10.0.2
canonical/ibm security verify governance, identity manager software stack
version/ibm security verify governance, identity manager software stack/isvg 10.0.2
canonical/ibm security verify governance, identity manager virtual appliance
version/ibm security verify governance, identity manager virtual appliance/isvg 10.0.2
canonical/ibm security verify governance identity manager container
version/ibm security verify governance identity manager container/isvg 10.0.2