SB2024053045 - Memory leak in Linux kernel phy
Published: May 30, 2024 Updated: May 14, 2025
Security Bulletin ID
SB2024053045
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Memory leak (CVE-ID: CVE-2021-47472)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the __mdiobus_register() function in drivers/net/phy/mdio_bus.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/fd2400dd4f1b8bd7a309b1b424d9e0d188151b01
- https://git.kernel.org/stable/c/b89f4537d7fdbd0bafb6d8a66a484e0bc99871a4
- https://git.kernel.org/stable/c/bc5f2f3431ced08300e4cb3aff35f1da14c26433
- https://git.kernel.org/stable/c/2bc10dca9432fadb09e45127e258fc7127fd346d
- https://git.kernel.org/stable/c/4ec0f9abc512cc02fb04daa89ccf6697e80ab417
- https://git.kernel.org/stable/c/fdbffd95c4ce94d2197c504008eaac46b16bc5a4
- https://git.kernel.org/stable/c/a9831afa2dc8a18205403907c41aa4e0950ac611
- https://git.kernel.org/stable/c/8121d0d4fd108280f5cd7b7fe8c6592adaa37be9
- https://git.kernel.org/stable/c/b0feaa8376f52357bf2fd020d0c471713a859728
- https://git.kernel.org/stable/c/6a18d155d5b35ad50c8fac2be091212487ae58ec
- https://git.kernel.org/stable/c/3a0dc2e35a5d6546b1db87fe985582dadc64fe7b
- https://git.kernel.org/stable/c/c828115a14eacbf42042770fd68543f134e89efa
- https://git.kernel.org/stable/c/0c4e87ba11eb331dca2315d484d08441b8c13193
- https://git.kernel.org/stable/c/8ba94a7f7b9fc2a2b808ccceb99b77135deae21a
- https://git.kernel.org/stable/c/ab609f25d19858513919369ff3d9a63c02cd9e2e
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.253
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.254
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.214
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.215
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.290
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.291
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.288
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.289
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.76
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.77
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.14.15
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.14.16
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.156
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.157