Name of the Vulnerable Software and Affected Versions Linux Kernel versions prior to v4.19.247

Description A potential memory leak issue exists in the mdp5 crtc cursor set() function. The actual impact and attack plausibility have not yet been proven. This issue was introduced in version v4.0 and is fixed in Linux Kernel version v4.19.247.

Recommendations For Linux Kernel versions prior to v4.19.247, update to version v4.19.247 or later to resolve the issue. As a temporary workaround, consider restricting access to the mdp5 crtc cursor set() function until a patch is available.