CVE-2021-47423 - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/debugfs: fix file release memory leak When using single_open() for opening, single_release() should be called, otherwise the 'op' allocated in single_open() will be leaked.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/11cd944bb87d9e575b94c07c952105eda745b459
https://git.kernel.org/stable/c/1508b09945bde393326a9dab73b1fc35f672d771
https://git.kernel.org/stable/c/88c3610045ca6e699331b6bb5c095c5565f30721
https://git.kernel.org/stable/c/9f9d4c88b2edc7924e19c44909cfc3fa4e4d3d43
https://git.kernel.org/stable/c/df0c9418923679bc6d0060bdb1b5bf2c755159e0
https://git.kernel.org/stable/c/f5a8703a9c418c6fc54eb772712dfe7641e3991c
https://git.kernel.org/stable/c/f69556a42043b5444ca712ee889829ba89fdcba8
https://lore.kernel.org/linux-cve-announce/2024052156-CVE-2021-47423-6632@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2021-47423
https://www.cve.org/CVERecord?id=CVE-2021-47423

History

Mon, 04 Nov 2024 12:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-05-21T15:04:10.611Z

Updated: 2024-11-04T12:05:37.647Z

Reserved: 2024-05-21T14:58:30.820Z

Link: CVE-2021-47423

Vulnrichment

Updated: 2024-08-04T05:39:59.135Z

NVD

Status : Awaiting Analysis

Published: 2024-05-21T15:15:27.727

Modified: 2024-05-21T16:53:56.550

Link: CVE-2021-47423

Redhat

Severity : Low

Publid Date: 2024-05-21T00:00:00Z

Links: CVE-2021-47423 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2021-47423", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-05-21T14:58:30.820Z", "datePublished": "2024-05-21T15:04:10.611Z", "dateUpdated": "2024-11-04T12:05:37.647Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-11-04T12:05:37.647Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/debugfs: fix file release memory leak\n\nWhen using single_open() for opening, single_release() should be\ncalled, otherwise the 'op' allocated in single_open() will be leaked."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/gpu/drm/nouveau/nouveau_debugfs.c"], "versions": [{"version": "6e9fc177399f", "lessThan": "df0c94189236", "status": "affected", "versionType": "git"}, {"version": "6e9fc177399f", "lessThan": "9f9d4c88b2ed", "status": "affected", "versionType": "git"}, {"version": "6e9fc177399f", "lessThan": "1508b09945bd", "status": "affected", "versionType": "git"}, {"version": "6e9fc177399f", "lessThan": "11cd944bb87d", "status": "affected", "versionType": "git"}, {"version": "6e9fc177399f", "lessThan": "f69556a42043", "status": "affected", "versionType": "git"}, {"version": "6e9fc177399f", "lessThan": "88c3610045ca", "status": "affected", "versionType": "git"}, {"version": "6e9fc177399f", "lessThan": "f5a8703a9c41", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/gpu/drm/nouveau/nouveau_debugfs.c"], "versions": [{"version": "4.5", "status": "affected"}, {"version": "0", "lessThan": "4.5", "status": "unaffected", "versionType": "semver"}, {"version": "4.9.287", "lessThanOrEqual": "4.9.*", "status": "unaffected", "versionType": "semver"}, {"version": "4.14.251", "lessThanOrEqual": "4.14.*", "status": "unaffected", "versionType": "semver"}, {"version": "4.19.211", "lessThanOrEqual": "4.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.4.153", "lessThanOrEqual": "5.4.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.10.73", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.14.12", "lessThanOrEqual": "5.14.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.15", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "references": [{"url": "https://git.kernel.org/stable/c/df0c9418923679bc6d0060bdb1b5bf2c755159e0"}, {"url": "https://git.kernel.org/stable/c/9f9d4c88b2edc7924e19c44909cfc3fa4e4d3d43"}, {"url": "https://git.kernel.org/stable/c/1508b09945bde393326a9dab73b1fc35f672d771"}, {"url": "https://git.kernel.org/stable/c/11cd944bb87d9e575b94c07c952105eda745b459"}, {"url": "https://git.kernel.org/stable/c/f69556a42043b5444ca712ee889829ba89fdcba8"}, {"url": "https://git.kernel.org/stable/c/88c3610045ca6e699331b6bb5c095c5565f30721"}, {"url": "https://git.kernel.org/stable/c/f5a8703a9c418c6fc54eb772712dfe7641e3991c"}], "title": "drm/nouveau/debugfs: fix file release memory leak", "x_generator": {"engine": "bippy-9e1c9544281a"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2021-47423", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-05-22T18:29:52.464224Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:13:23.519Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T05:39:59.135Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/df0c9418923679bc6d0060bdb1b5bf2c755159e0", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/9f9d4c88b2edc7924e19c44909cfc3fa4e4d3d43", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/1508b09945bde393326a9dab73b1fc35f672d771", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/11cd944bb87d9e575b94c07c952105eda745b459", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/f69556a42043b5444ca712ee889829ba89fdcba8", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/88c3610045ca6e699331b6bb5c095c5565f30721", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/f5a8703a9c418c6fc54eb772712dfe7641e3991c", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/df0c9418923679bc6d0060bdb1b5bf2c755159e0", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/9f9d4c88b2edc7924e19c44909cfc3fa4e4d3d43", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/1508b09945bde393326a9dab73b1fc35f672d771", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/11cd944bb87d9e575b94c07c952105eda745b459", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/f69556a42043b5444ca712ee889829ba89fdcba8", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/88c3610045ca6e699331b6bb5c095c5565f30721", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/f5a8703a9c418c6fc54eb772712dfe7641e3991c", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T05:39:59.135Z"}}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2021-47423", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-05-22T18:29:52.464224Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-23T19:01:25.693Z"}, "title": "CISA ADP Vulnrichment"}], "cna": {"title": "drm/nouveau/debugfs: fix file release memory leak", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "6e9fc177399f", "lessThan": "df0c94189236", "versionType": "git"}, {"status": "affected", "version": "6e9fc177399f", "lessThan": "9f9d4c88b2ed", "versionType": "git"}, {"status": "affected", "version": "6e9fc177399f", "lessThan": "1508b09945bd", "versionType": "git"}, {"status": "affected", "version": "6e9fc177399f", "lessThan": "11cd944bb87d", "versionType": "git"}, {"status": "affected", "version": "6e9fc177399f", "lessThan": "f69556a42043", "versionType": "git"}, {"status": "affected", "version": "6e9fc177399f", "lessThan": "88c3610045ca", "versionType": "git"}, {"status": "affected", "version": "6e9fc177399f", "lessThan": "f5a8703a9c41", "versionType": "git"}], "programFiles": ["drivers/gpu/drm/nouveau/nouveau_debugfs.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "4.5"}, {"status": "unaffected", "version": "0", "lessThan": "4.5", "versionType": "semver"}, {"status": "unaffected", "version": "4.9.287", "versionType": "semver", "lessThanOrEqual": "4.9.*"}, {"status": "unaffected", "version": "4.14.251", "versionType": "semver", "lessThanOrEqual": "4.14.*"}, {"status": "unaffected", "version": "4.19.211", "versionType": "semver", "lessThanOrEqual": "4.19.*"}, {"status": "unaffected", "version": "5.4.153", "versionType": "semver", "lessThanOrEqual": "5.4.*"}, {"status": "unaffected", "version": "5.10.73", "versionType": "semver", "lessThanOrEqual": "5.10.*"}, {"status": "unaffected", "version": "5.14.12", "versionType": "semver", "lessThanOrEqual": "5.14.*"}, {"status": "unaffected", "version": "5.15", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["drivers/gpu/drm/nouveau/nouveau_debugfs.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/df0c9418923679bc6d0060bdb1b5bf2c755159e0"}, {"url": "https://git.kernel.org/stable/c/9f9d4c88b2edc7924e19c44909cfc3fa4e4d3d43"}, {"url": "https://git.kernel.org/stable/c/1508b09945bde393326a9dab73b1fc35f672d771"}, {"url": "https://git.kernel.org/stable/c/11cd944bb87d9e575b94c07c952105eda745b459"}, {"url": "https://git.kernel.org/stable/c/f69556a42043b5444ca712ee889829ba89fdcba8"}, {"url": "https://git.kernel.org/stable/c/88c3610045ca6e699331b6bb5c095c5565f30721"}, {"url": "https://git.kernel.org/stable/c/f5a8703a9c418c6fc54eb772712dfe7641e3991c"}], "x_generator": {"engine": "bippy-9e1c9544281a"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/nouveau/debugfs: fix file release memory leak\n\nWhen using single_open() for opening, single_release() should be\ncalled, otherwise the 'op' allocated in single_open() will be leaked."}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-11-04T12:05:37.647Z"}}}, "cveMetadata": {"cveId": "CVE-2021-47423", "state": "PUBLISHED", "dateUpdated": "2024-11-04T12:05:37.647Z", "dateReserved": "2024-05-21T14:58:30.820Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-05-21T15:04:10.611Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}