发布于3月6日3月6日 Members Debian: CVE-2021-47364: linux -- security update Severity 5 CVSS (AV:L/AC:L/Au:S/C:N/I:N/A:C) Published 05/21/2024 Created 07/31/2024 Added 07/30/2024 Modified 01/28/2025 Description In the Linux kernel, the following vulnerability has been resolved: comedi: Fix memory leak in compat_insnlist() `compat_insnlist()` handles the 32-bit version of the `COMEDI_INSNLIST` ioctl (whenwhen `CONFIG_COMPAT` is enabled).It allocates memory to temporarily hold an array of `struct comedi_insn` converted from the 32-bit version in user space.This memory is only being freed if there is a fault while filling the array, otherwise it is leaked. Add a call to `kfree()` to fix the leak. Solution(s) debian-upgrade-linux References https://attackerkb.com/topics/cve-2021-47364 CVE - 2021-47364
