CVE-2021-47655

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2021-47655
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-47655.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2021-47655
Downstream
Published
2025-02-26T06:37:07.267Z
Modified
2026-03-15T22:43:17.162943Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

media: venus: vdec: fixed possible memory leak issue

The venushelperallocdpbbufs() implementation allows an early return on an error path when checking the id from idaallocmin() which would not release the earlier buffer allocation.

Move the direct kfree() from the error checking of dmaallocattrs() to the common fail path to ensure that allocations are released on all error paths in this function.

Addresses-Coverity: 1494120 ("Resource leak")

References

Affected packages

Git /

Affected ranges

Database specific

unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "5.16"
            },
            {
                "fixed": "5.16.19"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "5.17"
            },
            {
                "fixed": "5.17.2"
            }
        ]
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-47655.json"