Bugzilla – Bug 1220856
VUL-0: CVE-2021-47075: kernel: nvmet: fix memory leak in nvmet_alloc_ctrl()
Last modified: 2024-04-16 15:32:53 UTC
In the Linux kernel, the following vulnerability has been resolved: nvmet: fix memory leak in nvmet_alloc_ctrl() When creating ctrl in nvmet_alloc_ctrl(), if the cntlid_min is larger than cntlid_max of the subsystem, and jumps to the "out_free_changed_ns_list" label, but the ctrl->sqs lack of be freed. Fix this by jumping to the "out_free_sqs" label. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-47075 https://www.cve.org/CVERecord?id=CVE-2021-47075 https://bugzilla.redhat.com/show_bug.cgi?id=2267523 https://lore.kernel.org/linux-cve-announce/2024030142-CVE-2021-47075-8d12@gregkh/ Patch: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=fec356a61aa3
Tracking as affected: - cve/linux-5.3 Already patched: - SLE15-SP6 - cve/linux-5.14 - stable
Daniel, this seems to be in your area.
The 6d65aeab7bf6 ("nvmet: remove unused ctrl->cqs") introduces this leak but this commit is missing in cve/linux-5.3. This is bug report is invalid.