Description

In the Linux kernel, the following vulnerability has been resolved: net: cdc_eem: fix tx fixup skb leak when usbnet transmit a skb, eem fixup it in eem_tx_fixup(), if skb_copy_expand() failed, it return NULL, usbnet_start_xmit() will have no chance to free original skb. fix it by free orginal skb in eem_tx_fixup() first, then check skb clone status, if failed, return NULL to usbnet.

INFO

Published Date :

2024-05-21T14:19:37.724Z

Last Modified :

2025-05-04T07:06:52.921Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2021-47236 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2021-47236.

URL Resource
https://git.kernel.org/stable/c/05b2b9f7d24b5663d9b47427fe1555bdafd3ea02 cve-icon cve-icon
https://git.kernel.org/stable/c/14184ec5c958b589ba934da7363a2877879204df cve-icon cve-icon
https://git.kernel.org/stable/c/1bcacd6088d61c0ac6a990d87975600a81f3247e cve-icon cve-icon
https://git.kernel.org/stable/c/81de2ed06df8b5451e050fe6a318af3263dbff3f cve-icon cve-icon
https://git.kernel.org/stable/c/b4f7a9fc9d094c0c4a66f2ad7c37b1dbe9e78f88 cve-icon cve-icon
https://git.kernel.org/stable/c/c3b26fdf1b32f91c7a3bc743384b4a298ab53ad7 cve-icon cve-icon
https://git.kernel.org/stable/c/f12554b0ff639e74612cc01b3b4a049e098d2d65 cve-icon cve-icon
https://git.kernel.org/stable/c/f4e6a7f19c82f39b1803e91c54718f0d7143767d cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2021-47236 cve-icon
https://www.cve.org/CVERecord?id=CVE-2021-47236 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact