In the Linux kernel, the following vulnerability has been resolved:

perf bpf: Avoid memory leak from perf_env__insert_btf()

perf_env__insert_btf() doesn't insert if a duplicate BTF id is
encountered and this causes a memory leak. Modify the function to return
a success/error value and then free the memory if insertion didn't
happen.

v2. Adds a return -1 when the insertion error occurs in
perf_env__fetch_btf. This doesn't affect anything as the result is
never checked.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.0001.

Exploitation none

Automatable no

Technical Impact partial

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Linux Linux unaffected
Version Status Constraints
3792cb2ff43b1b193136a03ce1336462a827d792 affected < 642fc22210a5e59d40b1e4d56d21ec3effd401f2
3792cb2ff43b1b193136a03ce1336462a827d792 affected < 11589d3144bc4e272e0aae46ce8156162e99babc
3792cb2ff43b1b193136a03ce1336462a827d792 affected < ab7c3d8d81c511ddfb27823fb07081c96422b56e
3792cb2ff43b1b193136a03ce1336462a827d792 affected < 4924b1f7c46711762fd0e65c135ccfbcfd6ded1f
Linux Linux affected
Version Status Constraints
5.1 affected
0 unaffected < 5.1
5.4.162 unaffected ≤ 5.4.*
5.10.82 unaffected ≤ 5.10.*
5.15.5 unaffected ≤ 5.15.*
5.16 unaffected ≤ *

Configuration 1 [-]

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

No data.

No data.

Project Subscriptions

Vendors Products
Linux Subscribe
Linux Kernel Subscribe
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://git.kernel.org/stable/c/11589d3144bc4e272e0aae46ce8156162e99babc cve-icon cve-icon
https://git.kernel.org/stable/c/4924b1f7c46711762fd0e65c135ccfbcfd6ded1f cve-icon cve-icon
https://git.kernel.org/stable/c/642fc22210a5e59d40b1e4d56d21ec3effd401f2 cve-icon cve-icon
https://git.kernel.org/stable/c/ab7c3d8d81c511ddfb27823fb07081c96422b56e cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024041034-CVE-2021-47190-0261@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2021-47190 cve-icon
https://www.cve.org/CVERecord?id=CVE-2021-47190 cve-icon
History

Sat, 12 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00018}

 epss

{'score': 0.0001}

Tue, 07 Jan 2025 17:30:00 +0000

Type Values Removed Values Added
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel

Mon, 04 Nov 2024 12:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 11 Sep 2024 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 11 Sep 2024 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2025-05-04T07:06:04.188Z

Reserved: 2024-03-25T09:12:14.113Z

Link: CVE-2021-47190

cve-icon Vulnrichment

Updated: 2024-08-04T05:32:07.210Z

cve-icon NVD

Status : Analyzed

Published: 2024-04-10T19:15:47.617

Modified: 2025-01-07T17:11:50.810

Link: CVE-2021-47190

cve-icon Redhat

Severity : Low

Publid Date: 2024-04-10T00:00:00Z

Links: CVE-2021-47190 - Bugzilla

cve-icon OpenCVE Enrichment

No data.

Weaknesses