SB2024053041 - Memory leak in Linux kernel nfc
Published: May 30, 2024 Updated: May 14, 2025
Security Bulletin ID
SB2024053041
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Memory leak (CVE-ID: CVE-2021-47442)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the digital_in_send_sdd_req() function in net/nfc/digital_technology.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/74569c78aa84f8c958f1334b465bc530906ec99a
- https://git.kernel.org/stable/c/88c890b0b9a1fb9fcd01c61ada515e8b636c34f9
- https://git.kernel.org/stable/c/fcce6e5255474ca33c27dda0cdf9bf5087278873
- https://git.kernel.org/stable/c/071bdef36391958c89af5fa2172f691b31baa212
- https://git.kernel.org/stable/c/2bde4aca56db9fe25405d39ddb062531493a65db
- https://git.kernel.org/stable/c/50cb95487c265187289810addec5093d4fed8329
- https://git.kernel.org/stable/c/6432d7f1d1c3aa74cfe8f5e3afdf81b786c32e86
- https://git.kernel.org/stable/c/291c932fc3692e4d211a445ba8aa35663831bac7
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.252
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.213
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.290
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.288
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.75
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.14.14
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.155