DEBIAN-CVE-2021-47534
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 24 May 2024, 15:15
Last modified:28 Apr 2026, 20:23
Vulnerability Summary
Overall Risk (default)
low
16/100 CVSS Score
4.1 MEDIUM
3.1 (osv_debian)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
24 May 2024, 15:15
Published
Vulnerability first disclosed
28 Apr 2026, 20:23
Last Modified
Vulnerability information updated
Description
In the Linux kernel, the following vulnerability has been resolved: drm/vc4: kms: Add missing drm_crtc_commit_put Commit 9ec03d7f1ed3 ("drm/vc4: kms: Wait on previous FIFO users before a commit") introduced a global state for the HVS, with each FIFO storing the current CRTC commit so that we can properly synchronize commits. However, the refcounting was off and we thus ended up leaking the drm_crtc_commit structure every commit. Add a drm_crtc_commit_put to prevent the leakage.
CVSS Metrics
- v3.1•MEDIUM•Score: 4.1CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H
Affected Systems
- debian•linux
< 5.15.15-1 | < 5.15.15-1 | < 5.15.15-1