Vulnerability-Lookup

BDU:2024-08397

Vulnerability from fstec - Published: 14.12.2021

Title

Уязвимость компонента IB/qib ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

Description

Уязвимость компонента IB/qib ядра операционной системы Linux связана с ошибками освобождения памяти. Эксплуатация уязвимости может позволить нарушителю вызвать отказ в обслуживании

Severity ?


                    
                      AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Vendor

Canonical Ltd., Сообщество свободного программного обеспечения, ООО «Ред Софт»

Software Name

Ubuntu, Debian GNU/Linux, РЕД ОС (запись в едином реестре российских программ №3751), Linux

Software Version

18.04 LTS (Ubuntu), 10 (Debian GNU/Linux), 20.04 LTS (Ubuntu), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 7.3 (РЕД ОС), от 4.4.292 до 4.4.296 включительно (Linux), от 4.9.290 до 4.9.294 включительно (Linux), от 4.14.255 до 4.14.259 включительно (Linux), от 4.19.216 до 4.19.222 включительно (Linux), от 5.4.157 до 5.4.168 включительно (Linux), от 5.10.77 до 5.10.88 включительно (Linux), от 5.14.16 до 5.15.11 включительно (Linux)

Possible Mitigations

Использование рекомендаций: Для Linux: https://lore.kernel.org/linux-cve-announce/2024030444-CVE-2021-47104-bedc@gregkh/T/#u https://git.kernel.org/linus/bee90911e0138c76ee67458ac0d58b38a3190f65 https://git.kernel.org/stable/c/0aaec9c5f60754b56f84460ea439b8c5e91f4caa https://git.kernel.org/stable/c/1ced0a3015a95c6a6db45e37250912c4c86697ab https://git.kernel.org/stable/c/76b648063eb36c72dfc0a6896de8a0a7d2c7841c https://git.kernel.org/stable/c/79dcbd8176152b860028b62f81a635d987365752 https://git.kernel.org/stable/c/7cf6466e00a77b0a914b7b2c28a1fc7947d55e59 https://git.kernel.org/stable/c/aefcc25f3a0cd28a87d11d41d30419a12cd26a34 https://git.kernel.org/stable/c/bee90911e0138c76ee67458ac0d58b38a3190f65 https://git.kernel.org/stable/c/d53456492b5d02033c73dfa0f3b94c86337791ba https://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.260 https://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.223 https://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.297 https://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.295 https://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.89 https://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.12 https://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.169 Для РедОС: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/ Для Debian GNU/Linux: https://security-tracker.debian.org/tracker/CVE-2021-47104 Для Ubuntu: https://ubuntu.com/security/CVE-2021-47104

Reference

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47104 https://git.kernel.org/linus/bee90911e0138c76ee67458ac0d58b38a3190f65 https://git.kernel.org/stable/c/0aaec9c5f60754b56f84460ea439b8c5e91f4caa https://git.kernel.org/stable/c/1ced0a3015a95c6a6db45e37250912c4c86697ab https://git.kernel.org/stable/c/76b648063eb36c72dfc0a6896de8a0a7d2c7841c https://git.kernel.org/stable/c/79dcbd8176152b860028b62f81a635d987365752 https://git.kernel.org/stable/c/7cf6466e00a77b0a914b7b2c28a1fc7947d55e59 https://git.kernel.org/stable/c/aefcc25f3a0cd28a87d11d41d30419a12cd26a34 https://git.kernel.org/stable/c/bee90911e0138c76ee67458ac0d58b38a3190f65 https://git.kernel.org/stable/c/d53456492b5d02033c73dfa0f3b94c86337791ba https://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.260 https://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.223 https://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.297 https://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.295 https://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.89 https://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.12 https://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.169 https://lore.kernel.org/linux-cve-announce/2024030444-CVE-2021-47104-bedc@gregkh/ https://lore.kernel.org/linux-cve-announce/2024030444-CVE-2021-47104-bedc@gregkh/T/#u https://redos.red-soft.ru/support/secure/ https://security-tracker.debian.org/tracker/CVE-2021-47104 https://ubuntu.com/security/CVE-2021-47104 https://www.cve.org/CVERecord?id=CVE-2021-47104

CWE

CWE-401

JSON

To clipboard

{
  "CVSS 2.0": "AV:L/AC:L/Au:S/C:N/I:N/A:C",
  "CVSS 3.0": "AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Canonical Ltd., \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "18.04 LTS (Ubuntu), 10 (Debian GNU/Linux), 20.04 LTS (Ubuntu), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 7.3 (\u0420\u0415\u0414 \u041e\u0421), \u043e\u0442 4.4.292 \u0434\u043e 4.4.296 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Linux), \u043e\u0442 4.9.290 \u0434\u043e 4.9.294 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Linux), \u043e\u0442 4.14.255 \u0434\u043e 4.14.259 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Linux), \u043e\u0442 4.19.216 \u0434\u043e 4.19.222 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Linux), \u043e\u0442 5.4.157 \u0434\u043e 5.4.168 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Linux), \u043e\u0442 5.10.77 \u0434\u043e 5.10.88 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Linux), \u043e\u0442 5.14.16 \u0434\u043e 5.15.11 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Linux)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f Linux:\nhttps://lore.kernel.org/linux-cve-announce/2024030444-CVE-2021-47104-bedc@gregkh/T/#u\nhttps://git.kernel.org/linus/bee90911e0138c76ee67458ac0d58b38a3190f65\nhttps://git.kernel.org/stable/c/0aaec9c5f60754b56f84460ea439b8c5e91f4caa\nhttps://git.kernel.org/stable/c/1ced0a3015a95c6a6db45e37250912c4c86697ab\nhttps://git.kernel.org/stable/c/76b648063eb36c72dfc0a6896de8a0a7d2c7841c\nhttps://git.kernel.org/stable/c/79dcbd8176152b860028b62f81a635d987365752\nhttps://git.kernel.org/stable/c/7cf6466e00a77b0a914b7b2c28a1fc7947d55e59\nhttps://git.kernel.org/stable/c/aefcc25f3a0cd28a87d11d41d30419a12cd26a34\nhttps://git.kernel.org/stable/c/bee90911e0138c76ee67458ac0d58b38a3190f65\nhttps://git.kernel.org/stable/c/d53456492b5d02033c73dfa0f3b94c86337791ba\nhttps://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.260\nhttps://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.223\nhttps://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.297\nhttps://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.295\nhttps://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.89\nhttps://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.12\nhttps://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.169\n\n\u0414\u043b\u044f \u0420\u0435\u0434\u041e\u0421: \nhttp://repo.red-soft.ru/redos/7.3c/x86_64/updates/\n\n\u0414\u043b\u044f Debian GNU/Linux:\nhttps://security-tracker.debian.org/tracker/CVE-2021-47104\n\n\u0414\u043b\u044f Ubuntu:\nhttps://ubuntu.com/security/CVE-2021-47104",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "14.12.2021",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "07.11.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "23.10.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-08397",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2021-47104",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Ubuntu, Debian GNU/Linux, \u0420\u0415\u0414 \u041e\u0421 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Linux",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Canonical Ltd. Ubuntu 18.04 LTS , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 10 , Canonical Ltd. Ubuntu 20.04 LTS , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 11 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 12 , \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb \u0420\u0415\u0414 \u041e\u0421 7.3  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 4.14.255 \u0434\u043e 4.14.260 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 4.19.216 \u0434\u043e 4.19.223 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 4.4.292 \u0434\u043e 4.4.297 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 4.9.290 \u0434\u043e 4.9.295 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 5.10.77 \u0434\u043e 5.10.89 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 5.15 \u0434\u043e 5.15.12 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 5.4.157 \u0434\u043e 5.4.169 ",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 IB/qib \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e\u0435 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u0438\u0435 \u043f\u0430\u043c\u044f\u0442\u0438 \u043f\u0435\u0440\u0435\u0434 \u0443\u0434\u0430\u043b\u0435\u043d\u0438\u0435\u043c \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0439 \u0441\u0441\u044b\u043b\u043a\u0438 (\u00ab\u0443\u0442\u0435\u0447\u043a\u0430 \u043f\u0430\u043c\u044f\u0442\u0438\u00bb) (CWE-401)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 IB/qib \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0448\u0438\u0431\u043a\u0430\u043c\u0438 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u0438\u044f \u043f\u0430\u043c\u044f\u0442\u0438. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u0418\u0441\u0447\u0435\u0440\u043f\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u043e\u0432",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-47104\nhttps://git.kernel.org/linus/bee90911e0138c76ee67458ac0d58b38a3190f65\nhttps://git.kernel.org/stable/c/0aaec9c5f60754b56f84460ea439b8c5e91f4caa\nhttps://git.kernel.org/stable/c/1ced0a3015a95c6a6db45e37250912c4c86697ab\nhttps://git.kernel.org/stable/c/76b648063eb36c72dfc0a6896de8a0a7d2c7841c\nhttps://git.kernel.org/stable/c/79dcbd8176152b860028b62f81a635d987365752\nhttps://git.kernel.org/stable/c/7cf6466e00a77b0a914b7b2c28a1fc7947d55e59\nhttps://git.kernel.org/stable/c/aefcc25f3a0cd28a87d11d41d30419a12cd26a34\nhttps://git.kernel.org/stable/c/bee90911e0138c76ee67458ac0d58b38a3190f65\nhttps://git.kernel.org/stable/c/d53456492b5d02033c73dfa0f3b94c86337791ba\nhttps://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.260\nhttps://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.223\nhttps://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.297\nhttps://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.295\nhttps://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.89\nhttps://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.12\nhttps://kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.169\nhttps://lore.kernel.org/linux-cve-announce/2024030444-CVE-2021-47104-bedc@gregkh/\nhttps://lore.kernel.org/linux-cve-announce/2024030444-CVE-2021-47104-bedc@gregkh/T/#u\nhttps://redos.red-soft.ru/support/secure/\nhttps://security-tracker.debian.org/tracker/CVE-2021-47104\nhttps://ubuntu.com/security/CVE-2021-47104\nhttps://www.cve.org/CVERecord?id=CVE-2021-47104",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-401",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 4,6)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,5)"
}

CVE-2021-47104 (GCVE-0-2021-47104)

Vulnerability from cvelistv5 – Published: 2024-03-04 18:15 – Updated: 2025-05-04 12:41

Title

IB/qib: Fix memory leak in qib_user_sdma_queue_pkts()

Summary

In the Linux kernel, the following vulnerability has been resolved: IB/qib: Fix memory leak in qib_user_sdma_queue_pkts() The wrong goto label was used for the error case and missed cleanup of the pkt allocation. Addresses-Coverity-ID: 1493352 ("Resource leak")

Severity ?

No CVSS data available.

Assigner

Linux

References

URL

Tags

	https://git.kernel.org/stable/c/1ced0a3015a95c6a6…
	https://git.kernel.org/stable/c/76b648063eb36c72d…
	https://git.kernel.org/stable/c/d53456492b5d02033…
	https://git.kernel.org/stable/c/0aaec9c5f60754b56…
	https://git.kernel.org/stable/c/79dcbd8176152b860…
	https://git.kernel.org/stable/c/7cf6466e00a77b0a9…
	https://git.kernel.org/stable/c/aefcc25f3a0cd28a8…
	https://git.kernel.org/stable/c/bee90911e0138c76e…

Impacted products

Vendor

Product

Version

Linux

Affected: bda41654b6e0c125a624ca35d6d20beb8015b5d0 , < 1ced0a3015a95c6a6db45e37250912c4c86697ab (git)
Affected: 3f57c3f67fd93b4da86aeffea1ca32c484d054ad , < 76b648063eb36c72dfc0a6896de8a0a7d2c7841c (git)
Affected: 60833707b968d5ae02a75edb7886dcd4a957cf0d , < d53456492b5d02033c73dfa0f3b94c86337791ba (git)
Affected: 73d2892148aa4397a885b4f4afcfc5b27a325c42 , < 0aaec9c5f60754b56f84460ea439b8c5e91f4caa (git)
Affected: 0f8cdfff06829a0b0348b6debc29ff6a61967724 , < 79dcbd8176152b860028b62f81a635d987365752 (git)
Affected: c3e17e58f571f34c51aeb17274ed02c2ed5cf780 , < 7cf6466e00a77b0a914b7b2c28a1fc7947d55e59 (git)
Affected: d39bf40e55e666b5905fdbd46a0dced030ce87be , < aefcc25f3a0cd28a87d11d41d30419a12cd26a34 (git)
Affected: d39bf40e55e666b5905fdbd46a0dced030ce87be , < bee90911e0138c76ee67458ac0d58b38a3190f65 (git)
Affected: 0d4395477741608d123dad51def9fe50b7ebe952 (git)

Linux

Affected: 5.15
Unaffected: 0 , < 5.15 (semver)
Unaffected: 4.4.297 , ≤ 4.4.* (semver)
Unaffected: 4.9.295 , ≤ 4.9.* (semver)
Unaffected: 4.14.260 , ≤ 4.14.* (semver)
Unaffected: 4.19.223 , ≤ 4.19.* (semver)
Unaffected: 5.4.169 , ≤ 5.4.* (semver)
Unaffected: 5.10.89 , ≤ 5.10.* (semver)
Unaffected: 5.15.12 , ≤ 5.15.* (semver)
Unaffected: 5.16 , ≤ * (original_commit_for_fix)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47104",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-03-04T20:32:54.348631Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-05T17:22:07.588Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:24:39.970Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1ced0a3015a95c6a6db45e37250912c4c86697ab"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/76b648063eb36c72dfc0a6896de8a0a7d2c7841c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d53456492b5d02033c73dfa0f3b94c86337791ba"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0aaec9c5f60754b56f84460ea439b8c5e91f4caa"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/79dcbd8176152b860028b62f81a635d987365752"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7cf6466e00a77b0a914b7b2c28a1fc7947d55e59"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/aefcc25f3a0cd28a87d11d41d30419a12cd26a34"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bee90911e0138c76ee67458ac0d58b38a3190f65"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/hw/qib/qib_user_sdma.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "1ced0a3015a95c6a6db45e37250912c4c86697ab",
              "status": "affected",
              "version": "bda41654b6e0c125a624ca35d6d20beb8015b5d0",
              "versionType": "git"
            },
            {
              "lessThan": "76b648063eb36c72dfc0a6896de8a0a7d2c7841c",
              "status": "affected",
              "version": "3f57c3f67fd93b4da86aeffea1ca32c484d054ad",
              "versionType": "git"
            },
            {
              "lessThan": "d53456492b5d02033c73dfa0f3b94c86337791ba",
              "status": "affected",
              "version": "60833707b968d5ae02a75edb7886dcd4a957cf0d",
              "versionType": "git"
            },
            {
              "lessThan": "0aaec9c5f60754b56f84460ea439b8c5e91f4caa",
              "status": "affected",
              "version": "73d2892148aa4397a885b4f4afcfc5b27a325c42",
              "versionType": "git"
            },
            {
              "lessThan": "79dcbd8176152b860028b62f81a635d987365752",
              "status": "affected",
              "version": "0f8cdfff06829a0b0348b6debc29ff6a61967724",
              "versionType": "git"
            },
            {
              "lessThan": "7cf6466e00a77b0a914b7b2c28a1fc7947d55e59",
              "status": "affected",
              "version": "c3e17e58f571f34c51aeb17274ed02c2ed5cf780",
              "versionType": "git"
            },
            {
              "lessThan": "aefcc25f3a0cd28a87d11d41d30419a12cd26a34",
              "status": "affected",
              "version": "d39bf40e55e666b5905fdbd46a0dced030ce87be",
              "versionType": "git"
            },
            {
              "lessThan": "bee90911e0138c76ee67458ac0d58b38a3190f65",
              "status": "affected",
              "version": "d39bf40e55e666b5905fdbd46a0dced030ce87be",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "0d4395477741608d123dad51def9fe50b7ebe952",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/hw/qib/qib_user_sdma.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.15"
            },
            {
              "lessThan": "5.15",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.4.*",
              "status": "unaffected",
              "version": "4.4.297",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.295",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.260",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.223",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.169",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.89",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.4.297",
                  "versionStartIncluding": "4.4.292",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.295",
                  "versionStartIncluding": "4.9.290",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.260",
                  "versionStartIncluding": "4.14.255",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.223",
                  "versionStartIncluding": "4.19.216",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.169",
                  "versionStartIncluding": "5.4.157",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.89",
                  "versionStartIncluding": "5.10.77",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.12",
                  "versionStartIncluding": "5.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "5.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.14.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/qib: Fix memory leak in qib_user_sdma_queue_pkts()\n\nThe wrong goto label was used for the error case and missed cleanup of the\npkt allocation.\n\nAddresses-Coverity-ID: 1493352 (\"Resource leak\")"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:41:05.013Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/1ced0a3015a95c6a6db45e37250912c4c86697ab"
        },
        {
          "url": "https://git.kernel.org/stable/c/76b648063eb36c72dfc0a6896de8a0a7d2c7841c"
        },
        {
          "url": "https://git.kernel.org/stable/c/d53456492b5d02033c73dfa0f3b94c86337791ba"
        },
        {
          "url": "https://git.kernel.org/stable/c/0aaec9c5f60754b56f84460ea439b8c5e91f4caa"
        },
        {
          "url": "https://git.kernel.org/stable/c/79dcbd8176152b860028b62f81a635d987365752"
        },
        {
          "url": "https://git.kernel.org/stable/c/7cf6466e00a77b0a914b7b2c28a1fc7947d55e59"
        },
        {
          "url": "https://git.kernel.org/stable/c/aefcc25f3a0cd28a87d11d41d30419a12cd26a34"
        },
        {
          "url": "https://git.kernel.org/stable/c/bee90911e0138c76ee67458ac0d58b38a3190f65"
        }
      ],
      "title": "IB/qib: Fix memory leak in qib_user_sdma_queue_pkts()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47104",
    "datePublished": "2024-03-04T18:15:13.370Z",
    "dateReserved": "2024-03-04T18:12:48.835Z",
    "dateUpdated": "2025-05-04T12:41:05.013Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

BDU:2024-08397

CVE-2021-47104 (GCVE-0-2021-47104)

Tags

Sightings

Nomenclature