CVE-2021-47373

irqchip/gic-v3-its: Fix potential VPE leak on error

Severity Score

4.4

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

irqchip/gic-v3-its: Fix potential VPE leak on error

In its_vpe_irq_domain_alloc, when its_vpe_init() returns an error,
there is an off-by-one in the number of VPEs to be freed.

Fix it by simply passing the number of VPEs allocated, which is the
index of the loop iterating over the VPEs.

[maz: fixed commit message]

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: irqchip/gic-v3-its: soluciona una posible fuga de VPE en caso de error. En its_vpe_irq_domain_alloc, cuando its_vpe_init() devuelve un error, hay un error de uno en uno en el número de VPE. para ser liberado. Solucionelo simplemente pasando el número de VPE asignados, que es el índice del bucle que se itera sobre los VPE. [maz: mensaje de confirmación fijo]

*Credits: N/A

CVSS Scores

Red Hatv3.1 4.4

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-05-21 CVE Reserved
2024-05-21 CVE Published
2024-05-22 EPSS Updated
2024-09-11 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-402: Transmission of Private Resources into a New Sphere ('Resource Leak')

CAPEC

References (9)

URL	Tag	Source
https://git.kernel.org/stable/c/7d75bbb4bc1ad90386776459d37e4ddfe605671e	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/7d39992d45acd6f2d6b2f62389c55b61fb3d486b	2021-10-06
https://git.kernel.org/stable/c/5701e8bff314c155e7afdc467b1e0389d86853d0	2021-10-06
https://git.kernel.org/stable/c/42d3711c23781045e7a5cd28536c774b9a66d20b	2021-09-30
https://git.kernel.org/stable/c/568662e37f927e3dc3e475f3ff7cf4ab7719c5e7	2021-09-30
https://git.kernel.org/stable/c/e0c1c2e5da19685a20557a50f10c6aa4fa26aa84	2021-09-30
https://git.kernel.org/stable/c/280bef512933b2dda01d681d8cbe499b98fc5bdd	2021-09-22

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2021-47373	2024-08-08
https://bugzilla.redhat.com/show_bug.cgi?id=2282373	2024-08-08

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.14 < 4.14.249 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.14 < 4.14.249"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.14 < 4.19.209 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.14 < 4.19.209"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.14 < 5.4.150 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.14 < 5.4.150"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.14 < 5.10.70 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.14 < 5.10.70"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.14 < 5.14.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.14 < 5.14.9"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.14 < 5.15 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.14 < 5.15"		en		Affected