CVE-2021-47150

net: fec: fix the potential memory leak in fec_enet_init()

Description

In the Linux kernel, the following vulnerability has been resolved: net: fec: fix the potential memory leak in fec_enet_init() If the memory allocated for cbd_base is failed, it should free the memory allocated for the queues, otherwise it causes memory leak. And if the memory allocated for the queues is failed, it can return error directly.

Category

5.5
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.01%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/15102886bc8f5f29daaadf2d925591d564c17e9f patch
https://git.kernel.org/stable/c/20255d41ac560397b6a07d8d87dcc5e2efc7672a patch
https://git.kernel.org/stable/c/8ee7ef4a57a9e1228b6f345aaa70aa8951c7e9cd patch
https://git.kernel.org/stable/c/32a1777fd113335c3f70dc445dffee0ad1c6870f patch
https://git.kernel.org/stable/c/619fee9eb13b5d29e4267cb394645608088c28a8 patch

Frequently Asked Questions

What is the severity of CVE-2021-47150?
CVE-2021-47150 has been scored as a medium severity vulnerability.
How to fix CVE-2021-47150?
To fix CVE-2021-47150, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2021-47150 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2021-47150 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2021-47150?
CVE-2021-47150 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.