CVE-2021-46962

low-risk
Published 2024-02-27

In the Linux kernel, the following vulnerability has been resolved: mmc: uniphier-sd: Fix a resource leak in the remove function A 'tmio_mmc_host_free()' call is missing in the remove function, in order to balance a 'tmio_mmc_host_alloc()' call in the probe. This is done in the error handling path of the probe, but not in the remove function. Add the missing call.

Do I need to act?

-
0.02% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.5/10 Medium
LOCAL / LOW complexity

Affected Products (1)

Affected Vendors

Linux

References (10)

Patch https://git.kernel.org/stable/c/0d8941b9b2d3e7b3481fdf43b1a6189d162175b7
Patch https://git.kernel.org/stable/c/25ac6ce65f1ab458982d15ec1caf441acd37106a
Patch https://git.kernel.org/stable/c/d6e7fda496978f2763413b5523557b38dc2bf6c2
Patch https://git.kernel.org/stable/c/e29c84857e2d51aa017ce04284b962742fb97d9e
Patch https://git.kernel.org/stable/c/ebe0f12cf4c044f812c6d17011531582f9ac8bb3
Patch https://git.kernel.org/stable/c/0d8941b9b2d3e7b3481fdf43b1a6189d162175b7
Patch https://git.kernel.org/stable/c/25ac6ce65f1ab458982d15ec1caf441acd37106a
Patch https://git.kernel.org/stable/c/d6e7fda496978f2763413b5523557b38dc2bf6c2
Patch https://git.kernel.org/stable/c/e29c84857e2d51aa017ce04284b962742fb97d9e
Patch https://git.kernel.org/stable/c/ebe0f12cf4c044f812c6d17011531582f9ac8bb3
23
/ 100
low-risk
Severity 18/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal