CVE-2021-47314

memory: fsl_ifc: fix leak of private memory on probe failure

Description

In the Linux kernel, the following vulnerability has been resolved: memory: fsl_ifc: fix leak of private memory on probe failure On probe error the driver should free the memory allocated for private structure. Fix this by using resource-managed allocation.

Category

5.5
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.05%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/8018476756066e97ecb886c3dc024aeb7d5792ad patch
https://git.kernel.org/stable/c/3b45b8a7d549bd92ec94b5357c2c2c1a7ed107e4 patch
https://git.kernel.org/stable/c/7626ffbea708e5aba6912295c012d2b409a1769f patch
https://git.kernel.org/stable/c/ee1aa737ba0b75ab8af3444c4ae5bdba36aed6e6 patch
https://git.kernel.org/stable/c/443f6ca6fd186b4fa4e6f377b6e19a91feb1a0d5 patch
https://git.kernel.org/stable/c/b5789e23773f4a852fbfe244b63f675e265d3a7f patch
https://git.kernel.org/stable/c/48ee69825f7480622ed447b0249123236d3b3ad0 patch
https://git.kernel.org/stable/c/a6b45b4932f7b0c36b41fb56a35ad679ece939a0 patch
https://git.kernel.org/stable/c/8e0d09b1232d0538066c40ed4c13086faccbdff6 patch

Frequently Asked Questions

What is the severity of CVE-2021-47314?
CVE-2021-47314 has been scored as a medium severity vulnerability.
How to fix CVE-2021-47314?
To fix CVE-2021-47314, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2021-47314 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2021-47314 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2021-47314?
CVE-2021-47314 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.