PT-2025-7970 · Linux+2 · Linux Kernel+2

Liviu Dudau

Published

2021-12-03

Updated

2025-10-14

CVE-2021-47659

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved. The issue is related to the drm universal plane init() function, where a check for format count > 64 is performed. If this condition is met, it can lead to a leak of the plane->format types array and a failure to call drm mode object unregister(), resulting in a leak of the modeset identifier. The fix involves moving the range check to the start of the function to prevent resource allocation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-402

Related Identifiers

BDU:2026-03810

CVE-2021-47659

OESA-2025-1336

OPENSUSE-SU-2025_1263-1

SUSE-SU-2025:01600-1

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1194-1

SUSE-SU-2025:1241-1

SUSE-SU-2025:1263-1

SUSE-SU-2025_01600-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

SUSE-SU-2025_1263-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2025-7970 · Linux+2 · Linux Kernel+2

CVE-2021-47659

Weakness Enumeration

Related Identifiers

Affected Products

References · 1498