CVE-2021-47514

Published: May 24, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: devlink: fix netns refcount leak in devlink_nl_cmd_reload() While preparing my patch series adding netns refcount tracking, I spotted bugs in devlink_nl_cmd_reload() Some error paths forgot to release a refcount on a netns. To fix this, we can reduce the scope of get_net()/put_net() section around the call to devlink_reload().

Vendor	Product	Versions
Linux	Linux	affected `ccdf07219da6bd1f43c6ddcde4c0e36993c7365a - < 4b7e90672af8e0c78205db006f1b0a20ebd07f5f` affected `ccdf07219da6bd1f43c6ddcde4c0e36993c7365a - < fe30b70ca84da9c4aca85c03ad86e7a9b89c5ded` affected `ccdf07219da6bd1f43c6ddcde4c0e36993c7365a - < 4dbb0dad8e63fcd0b5a117c2861d2abe7ff5f186`
Linux	Linux	affected `5.10` unaffected `0 - < 5.10` unaffected `5.10.85 - <= 5.10.` unaffected `5.15.8 - <= 5.15.` unaffected `5.16 - <= *`

References

https://git.kernel.org/stable/c/4b7e90672af8e0c78205db006f1b0a20ebd07f5f

https://git.kernel.org/stable/c/fe30b70ca84da9c4aca85c03ad86e7a9b89c5ded

https://git.kernel.org/stable/c/4dbb0dad8e63fcd0b5a117c2861d2abe7ff5f186

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-47514

Description

Affected Products

References