CVE-2021-47651

soc: qcom: rpmpd: Check for null return of devm_kcalloc

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

MITRE
PS

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: rpmpd: Check for null return of devm_kcalloc Because of the possible failure of the allocation, data->domains might
be NULL pointer and will cause the dereference of the NULL pointer
later.
Therefore, it might be better to check it and directly return -ENOMEM
without releasing data manually if fails, because the comment of the
devm_kmalloc() says "Memory allocated with this function is
automatically freed on driver detach.".

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-02-26 CVE Reserved
2025-02-26 CVE Published
2025-05-04 CVE Updated
2025-08-06 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (7)

URL	Tag	Source
https://git.kernel.org/stable/c/bbe3a66c3f5a65fb3d702351bac2a6033944d389	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/755dbc3d73789ac9f0017c729abf5e4b153bf799	2022-04-15
https://git.kernel.org/stable/c/b5d6eba71997b6d661935d2b15094ac7f9f6132d	2022-04-08
https://git.kernel.org/stable/c/724376c30af5a57686b223dbcd6188e07d2a1de2	2022-04-08
https://git.kernel.org/stable/c/84b89fa877ad576e9ee8130f412cfd592f274508	2022-04-08
https://git.kernel.org/stable/c/31b5124d742969ea8bf7a1360596f548ca23e770	2022-04-08
https://git.kernel.org/stable/c/5a811126d38f9767a20cc271b34db7c8efc5a46c	2022-01-31

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.1 < 5.4.189 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.1 < 5.4.189"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.1 < 5.10.110 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.1 < 5.10.110"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.1 < 5.15.33 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.1 < 5.15.33"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.1 < 5.16.19 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.1 < 5.16.19"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.1 < 5.17.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.1 < 5.17.2"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.1 < 5.18 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.1 < 5.18"		en		Affected