Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: hdmi: Perform NULL pointer check for mtk_hdmi_conf In commit 41ca9caaae0b ("drm/mediatek: hdmi: Add check for CEA modes only") a check for CEA modes was added to function mtk_hdmi_bridge_mode_valid() in order to address possible issues on MT8167; moreover, with commit c91026a938c2 ("drm/mediatek: hdmi: Add optional limit on maximal HDMI mode clock") another similar check was introduced. Unfortunately though, at the time of writing, MT8173 does not provide any mtk_hdmi_conf structure and this is crashing the kernel with NULL pointer upon entering mtk_hdmi_bridge_mode_valid(), which happens as soon as a HDMI cable gets plugged in. To fix this regression, add a NULL pointer check for hdmi->conf in the said function, restoring HDMI functionality and avoiding NULL pointer kernel panics.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 5.14, < 5.15.12 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/3b8e19a0aa3933a785be9f1541afd8d398c4ec69Patch
- https://git.kernel.org/stable/c/71d07ebc5000b9c1d140e99e7493b0bafa954776Patch
- https://git.kernel.org/stable/c/3b8e19a0aa3933a785be9f1541afd8d398c4ec69Patch
- https://git.kernel.org/stable/c/71d07ebc5000b9c1d140e99e7493b0bafa954776Patch
FAQ
What is CVE-2021-47108?
CVE-2021-47108 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: hdmi: Perform NULL pointer check for mtk_hdmi_conf In commit 41ca9caaae0b ("drm/mediatek: hdmi: Add check for CEA mo...
How severe is CVE-2021-47108?
CVE-2021-47108 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-47108?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.