{"id":"CVE-2021-47657","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/virtio: Ensure that objs is not NULL in virtio_gpu_array_put_free()\n\nIf virtio_gpu_object_shmem_init() fails (e.g. due to fault injection, as it\nhappened in the bug report by syzbot), virtio_gpu_array_put_free() could be\ncalled with objs equal to NULL.\n\nEnsure that objs is not NULL in virtio_gpu_array_put_free(), or otherwise\nreturn from the function.","modified":"2026-03-14T14:52:55.268183Z","published":"2025-02-26T06:37:07.467Z","related":["SUSE-SU-2025:1027-1","SUSE-SU-2025:1176-1","SUSE-SU-2025:1183-1","SUSE-SU-2025:1241-1"],"references":[{"type":"FIX","url":"https://git.kernel.org/stable/c/6b79f96f4a23846516e5e6e4dd37fc06f43a60dd"},{"type":"FIX","url":"https://git.kernel.org/stable/c/abc9ad36df16e27ac1c665085157f1a082d39bac"},{"type":"FIX","url":"https://git.kernel.org/stable/c/ac92b474eeeed75b8660374ba1d129a121c09da8"},{"type":"FIX","url":"https://git.kernel.org/stable/c/b094fece3810c71ceee6f0921676cb65d4e68c5a"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"5.11.20"},{"fixed":"5.12"}]},{"events":[{"introduced":"5.12.3"},{"fixed":"5.15.32"}]},{"events":[{"introduced":"5.16"},{"fixed":"5.16.18"}]},{"events":[{"introduced":"5.17"},{"fixed":"5.17.1"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-47657.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}