CVE-2021-47320

low-risk

Published 2024-05-21

In the Linux kernel, the following vulnerability has been resolved: nfs: fix acl memory leak of posix_acl_create() When looking into another nfs xfstests report, I found acl and default_acl in nfs3_proc_create() and nfs3_proc_mknod() error paths are possibly leaked. Fix them in advance.

Do I need to act?

0.01% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Linux Kernel

Affected Vendors

Linux

References (18)

Patch https://git.kernel.org/stable/c/0704f617040c397ae73c1f88f3956787ec5d6529

Patch https://git.kernel.org/stable/c/1fcb6fcd74a222d9ead54d405842fc763bb86262

Patch https://git.kernel.org/stable/c/2e3960f276b4574a9bb0dfa31a7497302f6363b2

Patch https://git.kernel.org/stable/c/4b515308ab875c7e8ada8e606fe0c64762da5ed4

Patch https://git.kernel.org/stable/c/687cf32865b2d6960214bce523f2afac58dd3cd2

Patch https://git.kernel.org/stable/c/8a2b308a54c5ec224fedc753617f99b29ffcd883

Patch https://git.kernel.org/stable/c/c8fc86e9df6a6a03f5a8e15a3b7a5c75fd05aa38

Patch https://git.kernel.org/stable/c/cef9d9acb7c80ed6bace894b6334557fd493863b

Patch https://git.kernel.org/stable/c/d0b32dc1409f7e65e4fcc34e236462268e69a357