CVE-2021-47648

low-risk

Published 2025-02-26

In the Linux kernel, the following vulnerability has been resolved: gpu: host1x: Fix a memory leak in 'host1x_remove()' Add a missing 'host1x_channel_list_free()' call in the remove function, as already done in the error handling path of the probe function.

Do I need to act?

0.01% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Linux Kernel

Affected Vendors

Linux

References (5)

Patch https://git.kernel.org/stable/c/025c6643a81564f066d8381b9e2f4603e0f8438f

Patch https://git.kernel.org/stable/c/5124a344983e1b9670dae7add0e4d00d589aabcd

Patch https://git.kernel.org/stable/c/6bb107332db28a0e9256c2d36a0902b85307612c

Patch https://git.kernel.org/stable/c/c06577a80485511b894cb688e881ef0bc2d1d296

Patch https://git.kernel.org/stable/c/fe1ce680560d4f0049ffa0c687de17567421c1ec

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal