CVE-2021-46968

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Feb 27, 2024

Updated: Jan 8, 2025

CWE ID 401

Summary

CVE-2021-46968 is a vulnerability affecting the Linux kernel. This issue was resolved in relation to the s390/zcrypt driver. The problem stemmed from a memory leak during hot unplug events for zcard and zqueue structs, which failed to be properly freed due to a mismatch with get/put functions for the embedded kref counter. The fix implemented adjusts the handling of the kref counters, ensuring that they initialize with a value of 1, which must drop to zero before the object is released and freed.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Linux Kernel

Affected Vendors

LINUX

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/urTH_9
https://www.cve.org/CVERecord?id=CVE-2021-46968
https://nvd.nist.gov/vuln/detail/CVE-2021-46968

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners