CVE-2021-47651

MEDIUM EPSS 13.3%
Published Feb 26, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: rpmpd: Check for null return of devm_kcalloc Because of the possible failure of the allocation, data->domains might be NULL pointer and will cause the dereference of the NULL pointer later. Therefore, it might be better to check it and directly return -ENOMEM without releasing data manually if fails, because the comment of the devm_kmalloc() says "Memory allocated with this function is automatically freed on driver detach.".

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
13.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 5

VendorProductVersionRange
linuxlinux_kernel*≥5.1  –  <5.4.189
linuxlinux_kernel*≥5.5  –  <5.10.110
linuxlinux_kernel*≥5.11  –  <5.15.33
linuxlinux_kernel*≥5.16  –  <5.16.19
linuxlinux_kernel*≥5.17  –  <5.17.2

References 6

  • git.kernel.org https://git.kernel.org/stable/c/31b5124d742969ea8bf7a1360596f548ca23e770
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5a811126d38f9767a20cc271b34db7c8efc5a46c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/724376c30af5a57686b223dbcd6188e07d2a1de2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/755dbc3d73789ac9f0017c729abf5e4b153bf799
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/84b89fa877ad576e9ee8130f412cfd592f274508
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b5d6eba71997b6d661935d2b15094ac7f9f6132d
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/31b5124d742969ea8bf7a1360596f548ca23e770
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5a811126d38f9767a20cc271b34db7c8efc5a46c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/724376c30af5a57686b223dbcd6188e07d2a1de2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/755dbc3d73789ac9f0017c729abf5e4b153bf799
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/84b89fa877ad576e9ee8130f412cfd592f274508
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b5d6eba71997b6d661935d2b15094ac7f9f6132d
    Patch