CVE-2021-47236

Description

In the Linux kernel, the following vulnerability has been resolved: net: cdc_eem: fix tx fixup skb leak when usbnet transmit a skb, eem fixup it in eem_tx_fixup(), if skb_copy_expand() failed, it return NULL, usbnet_start_xmit() will have no chance to free original skb. fix it by free orginal skb in eem_tx_fixup() first, then check skb clone status, if failed, return NULL to usbnet.

Predictions

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

References

• https://errata.rockylinux.org/RXSA-2024:4211
• https://errata.rockylinux.org/RLSA-2024:4352
• https://errata.rockylinux.org/RLSA-2024:4211
• https://www.suse.com/security/cve/CVE-2021-47236.html
• https://security-tracker.debian.org/tracker/CVE-2021-47236
• https://access.redhat.com/errata/RHSA-2024:4211
• https://bugzilla.redhat.com/1918601
• https://bugzilla.redhat.com/2248122
• https://bugzilla.redhat.com/2258875
• https://bugzilla.redhat.com/2265517
• https://bugzilla.redhat.com/2265519
• https://bugzilla.redhat.com/2265520
• https://bugzilla.redhat.com/2265800
• https://bugzilla.redhat.com/2266408
• https://bugzilla.redhat.com/2266831
• https://bugzilla.redhat.com/2267513
• https://bugzilla.redhat.com/2267518
• https://bugzilla.redhat.com/2267730
• https://bugzilla.redhat.com/2270093
• https://bugzilla.redhat.com/2271680
• https://bugzilla.redhat.com/2272692
• https://bugzilla.redhat.com/2272829
• https://bugzilla.redhat.com/2273204
• https://bugzilla.redhat.com/2273278
• https://bugzilla.redhat.com/2273423

💬 Discuss CVE-2021-47236 on VIR Community →

Community-verified mitigations for this CVE will appear above when contributors publish them.