CVE-2021-47659: drm/plane: Move range check for format_count earlier
In the Linux kernel, the following vulnerability has been resolved:
drm/plane: Move range check for format_count earlier
While the check for format_count > 64 in __drm_universal_plane_init()
shouldn't be hit (it's a WARN_ON), in its current position it will then
leak the plane->format_types array and fail to call
drm_mode_object_unregister() leaking the modeset identifier. Move it to
the start of the function to avoid allocating those resources in the
first place.
Security readout for executives and security teams
Plain-English summary
CVE-2021-47659 is a Linux kernel DRM graphics subsystem resource leak. A sanity check ran too late, so an unexpected plane format count could leak allocated memory and a modeset identifier during initialization. Public sources do not show active exploitation, CVSS, or broad user-triggerable impact.
Executive priority
Treat as routine kernel hygiene unless you run custom graphics drivers or high-density Linux desktop/GPU infrastructure. Patch through normal maintenance windows, and rely on distribution guidance for exact applicability.
Technical view
In __drm_universal_plane_init(), the format_count > 64 WARN_ON check occurred after allocating plane->format_types and registering a mode object. If hit, cleanup was incomplete. The fix moves the range check earlier to avoid allocating resources before rejecting the invalid condition.
Likely exposure
Exposure is mainly Linux systems with affected kernel versions and DRM/KMS graphics drivers. The described condition should not normally occur, according to the kernel commit text. Risk is higher for systems using unusual, custom, or out-of-tree graphics driver paths.
Exploitation context
No KEV listing or cited source indicates active exploitation. The source describes a defensive cleanup bug around an unexpected initialization condition, not a documented remote attack path. Practical exploitation evidence is incomplete from the provided sources.
Researcher notes
The issue is a resource leak on an error path in DRM plane initialization. The commit says the condition should not be hit. Sources lack CVSS, CWE, exploitability analysis, or user-space trigger details, so impact should be assessed conservatively.
Mitigation direction
Update to a Linux kernel or distribution package containing the referenced stable fixes.
Check your Linux distribution’s advisory for the exact fixed package version.
Prioritize systems with graphics stacks, DRM/KMS usage, or custom kernel drivers.
Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.
Potential ATT&CK relevance
Conservative CVE-to-ATT&CK context
These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.
ATT&CK lookup starting points
Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.
cve · low confidence lookup
CVE-2021-47659 mapping review
Open the CVE-to-ATT&CK bridge for reviewed, inferred, or future official mappings tied to this CVE.
These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.
0CVSS vectors
3Timeline events
0ADP providers
8Source links
Vulnerability timeline
Timeline events are normalized from CVE metadata, CNA source timelines, ADP timelines, and KEV metadata when present.
CVE reservedCVE Program
The CVE ID was reserved by the assigning CNA.
CVE publishedCVE Program
The CVE record was published.
Feb 26, 2025, 02:05 UTC (UTC+00:00)
CVE updatedCVE Program
The CVE record metadata indicates this as the latest update time.