Name of the Vulnerable Software and Affected Versions Xilinx VIPP versions prior to v6.0.3

Description A refcount leak was discovered in the xvip graph dma init function. The actual impact and attack plausibility have not yet been proven. This issue was introduced in Linux Kernel version v4.1 and is fixed in version v6.0.3.

Recommendations For versions prior to v6.0.3, update to Linux Kernel version v6.0.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the xvip graph dma init function until a patch is available.