摘要:
In the Linux kernel, the following vulnerability has been resolved:
devlink: fix netns refcount leak in devlink_nl_cmd_reload()
While preparing my patch series adding netns refcount tracking,
I spotted bugs in devlink_nl_cmd_reload()
Some error paths forgot to release a refcount on a netns.
To fix this, we can reduce the scope of get_net()/put_net()
section around the call to devlink_reload().
安全等级: Low
公告ID: KylinSec-SA-2024-2194
发布日期: 2024年5月28日
关联CVE: CVE-2021-47514
In the Linux kernel, the following vulnerability has been resolved:
devlink: fix netns refcount leak in devlink_nl_cmd_reload()
While preparing my patch series adding netns refcount tracking,
I spotted bugs in devlink_nl_cmd_reload()
Some error paths forgot to release a refcount on a netns.
To fix this, we can reduce the scope of get_net()/put_net()
section around the call to devlink_reload().
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2021-47514 | KY3.4-4A | kernel | Unaffected |
| CVE-2021-47514 | KY3.4-5 | kernel | Unaffected |
| CVE-2021-47514 | KY3.5.3 | kernel | Unaffected |
| CVE-2021-47514 | V6 | kernel | Unaffected |
