Description

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix error handling of scsi_host_alloc() After device is initialized via device_initialize(), or its name is set via dev_set_name(), the device has to be freed via put_device(). Otherwise device name will be leaked because it is allocated dynamically in dev_set_name(). Fix the leak by replacing kfree() with put_device(). Since scsi_host_dev_release() properly handles IDA and kthread removal, remove special-casing these from the error handling as well.

INFO

Published Date :

2024-05-21T14:19:52.082Z

Last Modified :

2025-12-18T11:36:22.740Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2021-47258 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2021-47258.

URL Resource
https://git.kernel.org/stable/c/2dc85045ae65b9302a1d2e2ddd7ce4c030153a6a cve-icon cve-icon
https://git.kernel.org/stable/c/45d83db4728127944b237c0c8248987df9d478e7 cve-icon cve-icon
https://git.kernel.org/stable/c/66a834d092930cf41d809c0e989b13cd6f9ca006 cve-icon cve-icon
https://git.kernel.org/stable/c/79296e292d67fa7b5fb8d8c27343683e823872c8 cve-icon cve-icon
https://git.kernel.org/stable/c/7a696ce1d5d16a33a6cd6400bbcc0339b2460e11 cve-icon cve-icon
https://git.kernel.org/stable/c/8958181c1663e24a13434448e7d6b96b5d04900a cve-icon cve-icon
https://git.kernel.org/stable/c/db08ce595dd64ea9859f7d088b51cbfc8e685c66 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024052146-CVE-2021-47258-f276@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2021-47258 cve-icon
https://www.cve.org/CVERecord?id=CVE-2021-47258 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact