Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: s390/zcrypt: fix zcard and zqueue hot-unplug memleak Tests with kvm and a kmemdebug kernel showed, that on hot unplug the zcard and zqueue structs for the unplugged card or queue are not properly freed because of a mismatch with get/put for the embedded kref counter. This fix now adjusts the handling of the kref counters. With init the kref counter starts with 1. This initial value needs to drop to zero with the unregister of the card or queue to trigger the release and free the object.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 5.10, < 5.10.36 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/026499a9c2e002e621ad568d1378324ae97e5524Patch
- https://git.kernel.org/stable/c/055a063a18bcd19b93709e3eac8078d6b2f04599Patch
- https://git.kernel.org/stable/c/70fac8088cfad9f3b379c9082832b4d7532c16c2Patch
- https://git.kernel.org/stable/c/971dc8706cee47393d393905d294ea47e39503d3Patch
- https://git.kernel.org/stable/c/026499a9c2e002e621ad568d1378324ae97e5524Patch
- https://git.kernel.org/stable/c/055a063a18bcd19b93709e3eac8078d6b2f04599Patch
- https://git.kernel.org/stable/c/70fac8088cfad9f3b379c9082832b4d7532c16c2Patch
- https://git.kernel.org/stable/c/971dc8706cee47393d393905d294ea47e39503d3Patch
FAQ
What is CVE-2021-46968?
CVE-2021-46968 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: s390/zcrypt: fix zcard and zqueue hot-unplug memleak Tests with kvm and a kmemdebug kernel showed, that on hot unplug the zcard an...
How severe is CVE-2021-46968?
CVE-2021-46968 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-46968?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.