Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2021-45480

Опубликовано: 14 дек. 2021
Источник: redhat
CVSS3: 5.5
EPSS Низкий

Описание

An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the __rds_conn_create() function in net/rds/connection.c in a certain combination of circumstances.

A memory leak flaw was found in the Reliable Datagram Socket (RDS) in TCP in the Linux kernel. A local attacker, with user privileges, could cause a denial of service on the system. The issue results from the code cleanup in __rds_conn_create in net/rds/connection.c.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6kernelOut of support scope
Red Hat Enterprise Linux 7kernelNot affected
Red Hat Enterprise Linux 7kernel-rtNot affected
Red Hat Enterprise Linux 8kernelNot affected
Red Hat Enterprise Linux 8kernel-rtNot affected
Red Hat Enterprise Linux 9kernelNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-401
https://bugzilla.redhat.com/show_bug.cgi?id=2035946kernel: memory leak in the __rds_conn_create() in net/rds/connection.c

EPSS

Процентиль: 13%
0.00043
Низкий

5.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2021-45480

CVSS3: 5.5
ubuntu
около 4 лет назад

An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the __rds_conn_create() function in net/rds/connection.c in a certain combination of circumstances.

nvd логотип

CVE-2021-45480

CVSS3: 5.5
nvd
около 4 лет назад

An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the __rds_conn_create() function in net/rds/connection.c in a certain combination of circumstances.

msrc логотип

CVE-2021-45480

CVSS3: 5.5
msrc
около 4 лет назад

An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the __rds_conn_create() function in net/rds/connection.c in a certain combination of circumstances.

debian логотип

CVE-2021-45480

CVSS3: 5.5
debian
около 4 лет назад

An issue was discovered in the Linux kernel before 5.15.11. There is a ...

github логотип

GHSA-p5rp-g3gq-57jq

CVSS3: 5.5
github
около 4 лет назад

An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the __rds_conn_create() function in net/rds/connection.c in a certain combination of circumstances.

EPSS

Процентиль: 13%
0.00043
Низкий

5.5 Medium

CVSS3