Home

Description

In the Linux kernel, the following vulnerability has been resolved: can: etas_es58x: es58x_rx_err_msg(): fix memory leak in error path In es58x_rx_err_msg(), if can->do_set_mode() fails, the function directly returns without calling netif_rx(skb). This means that the skb previously allocated by alloc_can_err_skb() is not freed. In other terms, this is a memory leak. This patch simply removes the return statement in the error branch and let the function continue. Issue was found with GCC -fanalyzer, please follow the link below for details.

PUBLISHED Reserved 2025-04-16 | Published 2025-04-17 | Updated 2026-05-11 | Assigner Linux

Product status

Default status
unaffected

8537257874e949a59c834cecfd5a063e11b64b0b (git) before 4f389e1276a5389c92cef860c9fde8e1c802a871
affected

8537257874e949a59c834cecfd5a063e11b64b0b (git) before 7eb0881aec26099089f12ae850aebd93190b1dfe
affected

8537257874e949a59c834cecfd5a063e11b64b0b (git) before d9447f768bc8c60623e4bb3ce65b8f4654d33a50
affected

Default status
affected

5.13
affected

Any version before 5.13
unaffected

5.14.19 (semver)
unaffected

5.15.3 (semver)
unaffected

5.16 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/4f389e1276a5389c92cef860c9fde8e1c802a871

git.kernel.org/...c/7eb0881aec26099089f12ae850aebd93190b1dfe

git.kernel.org/...c/d9447f768bc8c60623e4bb3ce65b8f4654d33a50

cve.org (CVE-2021-47671)

nvd.nist.gov (CVE-2021-47671)

Download JSON