{"id":"CVE-2021-47655","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: venus: vdec: fixed possible memory leak issue\n\nThe venus_helper_alloc_dpb_bufs() implementation allows an early return\non an error path when checking the id from ida_alloc_min() which would\nnot release the earlier buffer allocation.\n\nMove the direct kfree() from the error checking of dma_alloc_attrs() to\nthe common fail path to ensure that allocations are released on all\nerror paths in this function.\n\nAddresses-Coverity: 1494120 (\"Resource leak\")","modified":"2026-03-15T22:43:17.162943Z","published":"2025-02-26T06:37:07.267Z","references":[{"type":"FIX","url":"https://git.kernel.org/stable/c/8403fdd775858a7bf04868d43daea0acbe49ddfc"},{"type":"FIX","url":"https://git.kernel.org/stable/c/55bccafc246b2e64763a155ec454470c07a54a6e"},{"type":"FIX","url":"https://git.kernel.org/stable/c/5cedfe8aaf1875a5305897107b7f298db4260019"},{"type":"FIX","url":"https://git.kernel.org/stable/c/5f89d05ba93df9c2cdfe493843f93288e55e99eb"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"5.16"},{"fixed":"5.16.19"}]},{"events":[{"introduced":"5.17"},{"fixed":"5.17.2"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-47655.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}