Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: soc: qcom: rpmpd: Check for null return of devm_kcalloc Because of the possible failure of the allocation, data->domains might be NULL pointer and will cause the dereference of the NULL pointer later. Therefore, it might be better to check it and directly return -ENOMEM without releasing data manually if fails, because the comment of the devm_kmalloc() says "Memory allocated with this function is automatically freed on driver detach.".
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 5.1, < 5.4.189 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/31b5124d742969ea8bf7a1360596f548ca23e770Patch
- https://git.kernel.org/stable/c/5a811126d38f9767a20cc271b34db7c8efc5a46cPatch
- https://git.kernel.org/stable/c/724376c30af5a57686b223dbcd6188e07d2a1de2Patch
- https://git.kernel.org/stable/c/755dbc3d73789ac9f0017c729abf5e4b153bf799Patch
- https://git.kernel.org/stable/c/84b89fa877ad576e9ee8130f412cfd592f274508Patch
- https://git.kernel.org/stable/c/b5d6eba71997b6d661935d2b15094ac7f9f6132dPatch
FAQ
What is CVE-2021-47651?
CVE-2021-47651 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: soc: qcom: rpmpd: Check for null return of devm_kcalloc Because of the possible failure of the allocation, data->domains might be ...
How severe is CVE-2021-47651?
CVE-2021-47651 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-47651?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.