CVE-2021-47471

MEDIUM

Linux Kernel 5.10-5.10.75 - NULL Pointer Dereference in mxsfb_unload

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm: mxsfb: Fix NULL pointer dereference crash on unload The mxsfb->crtc.funcs may already be NULL when unloading the driver, in which case calling mxsfb_irq_disable() via drm_irq_uninstall() from mxsfb_unload() leads to NULL pointer dereference. Since all we care about is masking the IRQ and mxsfb->base is still valid, just use that to clear and mask the IRQ.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/f40c2281d2c0674d32ba732fee45222d76495472

Patch

https://git.kernel.org/stable/c/b0e6db0656ddfd8bb57303c2ef61ee1c1cc694a8

Patch

https://git.kernel.org/stable/c/3cfc183052c3dbf8eae57b6c1685dab00ed3db4a

Scores

CVSS v3 5.5

EPSS 0.0021

EPSS Percentile 10.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (10)

Linux/Linux < 5.10

Linux/Linux 5.10

Linux/Linux 5.10.76 - 5.10.*

Linux/Linux 5.14.15 - 5.14.*

Linux/Linux 5.15

Linux/Linux ae1ed0093281939b80664a687689f12436c0e874 - 3cfc183052c3dbf8eae57b6c1685dab00ed3db4a

Linux/Linux ae1ed0093281939b80664a687689f12436c0e874 - b0e6db0656ddfd8bb57303c2ef61ee1c1cc694a8

Linux/Linux ae1ed0093281939b80664a687689f12436c0e874 - f40c2281d2c0674d32ba732fee45222d76495472

linux/linux_kernel 5.15 rc1 (6 CPE variants)

linux/linux_kernel 5.10 - 5.10.76

Published May 22, 2024

Tracked Since Feb 18, 2026