CVE-2021-47534

Advisory lineage Upstream: 0 Downstream: 17

Downstream

DEBIAN-CVE-2021-47534 SUSE-SU-2024:2008-1 SUSE-SU-2024:2011-1 SUSE-SU-2024:2019-1 SUSE-SU-2024:2189-1 SUSE-SU-2024:2190-1

Analyzed

Published: 24 May 2024, 15:09

Last modified:11 May 2026, 13:56

Vulnerability Summary

Overall Risk (default)

low

16/100

CVSS Score

4.1 MEDIUM

v3.1 (cve.org)

EPSS Score

0.01% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

24 May 2024, 15:09

Published

Vulnerability first disclosed

11 May 2026, 13:56

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: kms: Add missing drm_crtc_commit_put Commit 9ec03d7f1ed3 ("drm/vc4: kms: Wait on previous FIFO users before a commit") introduced a global state for the HVS, with each FIFO storing the current CRTC commit so that we can properly synchronize commits. However, the refcounting was off and we thus ended up leaking the drm_crtc_commit structure every commit. Add a drm_crtc_commit_put to prevent the leakage.

CVSS Metrics

v3.1•MEDIUM•Score: 4.1CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.01%• Percentile: 2%

Affected Systems

linux•linux
≥ 9ec03d7f1ed394897891319a4dda75f52c5d292d, < 53f9601e908d42481addd67cdb01a9288c611124 | ≥ 9ec03d7f1ed394897891319a4dda75f52c5d292d, < 049cfff8d53a30cae3349ff71a4c01b7d9981bc2 | 5.12
linux•linux_kernel
≥ 5.12, < 5.15.7 | 5.16:rc1 | 5.16:rc2 | 5.16:rc3