CVE-2021-47403: ipack: ipoctal: fix module reference leak
First published: Tue May 21 2024(Updated: )
In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix module reference leak A reference to the carrier module was taken on every open but was only released once when the final reference to the tty struct was dropped. Fix this by taking the module reference and initialising the tty driver data when installing the tty.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel | >=3.18<4.4.286 | |
| Linux Kernel | >=4.5<4.9.285 | |
| Linux Kernel | >=4.10<4.14.249 | |
| Linux Kernel | >=4.15<4.19.209 | |
| Linux Kernel | >=4.20<5.4.151 | |
| Linux Kernel | >=5.5<5.10.71 | |
| Linux Kernel | >=5.11<5.14.10 | |
| Linux Kernel | =5.15-rc1 | |
| Linux Kernel | =5.15-rc2 | |
| Linux Kernel | =5.15-rc3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://git.kernel.org/stable/c/31398849b84ebae0d43a1cf379cb9895597f221a
- https://git.kernel.org/stable/c/c0adb5a947dec6cff7050ec56d78ecd3916f9ce6
- https://git.kernel.org/stable/c/dde4c1429b97383689f755ce92b4ed1e84a9c92b
- https://git.kernel.org/stable/c/9c5b77a7ffc983b2429ce158b50497c5d3c86a69
- https://git.kernel.org/stable/c/3253c87e1e5bc0107aab773af2f135ebccf38666
- https://git.kernel.org/stable/c/7cea848678470daadbfdaa6a112b823c290f900c
- https://git.kernel.org/stable/c/811178f296b16af30264def74c8d2179a72d5562
- https://git.kernel.org/stable/c/bb8a4fcb2136508224c596a7e665bdba1d7c3c27
Frequently Asked Questions
What is the severity of CVE-2021-47403?
CVE-2021-47403 has been classified as a moderate severity vulnerability affecting certain versions of the Linux kernel.
How do I fix CVE-2021-47403?
To fix CVE-2021-47403, update your Linux kernel to a version that includes the patches addressing this vulnerability.
What systems are affected by CVE-2021-47403?
CVE-2021-47403 affects multiple versions of the Linux kernel, specifically versions between 3.18 and 5.15-rc3.
What type of vulnerability is CVE-2021-47403?
CVE-2021-47403 is a reference leak vulnerability in the ipack and ipoctal modules of the Linux kernel.
Is CVE-2021-47403 exploitable?
Exploitation of CVE-2021-47403 could lead to a denial of service due to resource leaks, impacting system stability.
- agent/title
- agent/references
- agent/first-publish-date
- agent/type
- agent/description
- agent/author
- agent/severity
- agent/weakness
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/source
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- vendor/linux
- canonical/linux kernel
- version/linux kernel/3.18
- version/linux kernel/4.5
- version/linux kernel/4.10
- version/linux kernel/4.15
- version/linux kernel/4.20
- version/linux kernel/5.5
- version/linux kernel/5.11
- version/linux kernel/5.15-rc1
- version/linux kernel/5.15-rc2
- version/linux kernel/5.15-rc3