CVE-2021-47444— drm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read

EPSS 0.01% · P3 Updated May 13, 2026

Affected Version Matrix 8

Vendor	Product	Version Range	Status
Linux	Linux	`e11f5bd8228fc3760c221f940b9f6365dbf3e7ed< a7b45024f66f9ec769e8dbb1a51ae83cd05929c7`	affected
		`e11f5bd8228fc3760c221f940b9f6365dbf3e7ed< 09f3946bb452918dbfb1982add56f9ffaae393dc`	affected
		`e11f5bd8228fc3760c221f940b9f6365dbf3e7ed< 97794170b696856483f74b47bfb6049780d2d3a0`	affected
		`5.7`	affected
		`< 5.7`	unaffected
		`5.10.75≤ 5.10.*`	unaffected
		`5.14.14≤ 5.14.*`	unaffected
		`5.15≤ *`	unaffected

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-47444

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

drm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read

Source: NVD (National Vulnerability Database)

Vulnerability Description

In the Linux kernel, the following vulnerability has been resolved: drm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read In commit e11f5bd8228f ("drm: Add support for DP 1.4 Compliance edid corruption test") the function connector_bad_edid() started assuming that the memory for the EDID passed to it was big enough to hold `edid[0x7e] + 1` blocks of data (1 extra for the base block). It completely ignored the fact that the function was passed `num_blocks` which indicated how much memory had been allocated for the EDID. Let's fix this by adding a bounds check. This is important for handling the case where there's an error in the first block of the EDID. In that case we will call connector_bad_edid() without having re-allocated memory based on `edid[0x7e]`.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Linux kernel 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞。目前尚无此漏洞的相关信息，请随时关注CNNVD或厂商公告。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Linux	Linux	e11f5bd8228fc3760c221f940b9f6365dbf3e7ed ~ a7b45024f66f9ec769e8dbb1a51ae83cd05929c7	-
Linux	Linux	5.7	-

II. Public POCs for CVE-2021-47444

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2021-47444

请登录查看更多情报信息。

Other References for CVE-2021-47444 (3)

https://nvd.nist.gov/vuln/detail/CVE-2021-47444

Same Patch Batch · Linux · 2024-05-22 · 63 CVEs total

CVE-2021-47477		comedi: dt9812: fix DMA buffers on stack
CVE-2021-47493		ocfs2: fix race between searching chunks and release journal_head from buffer_head
CVE-2021-47495		usbnet: sanity check for maxpacket
CVE-2021-47496		net/tls: Fix flipped sign in tls_err_abort() calls
CVE-2021-47494		cfg80211: fix management registrations locking
CVE-2021-47481		RDMA/mlx5: Initialize the ODP xarray when creating an ODP MR
CVE-2021-47482		net: batman-adv: fix error handling
CVE-2021-47480		scsi: core: Put LLD module refcnt after SCSI device is released
CVE-2021-47478		isofs: Fix out of bound access for corrupted isofs image
CVE-2021-47479		staging: rtl8712: fix use-after-free in rtl8712_dl_fw
CVE-2021-47483		regmap: Fix possible double-free in regcache_rbtree_exit()
CVE-2021-47476		comedi: ni_usb6501: fix NULL-deref in command paths
CVE-2021-47475		comedi: vmk80xx: fix transfer-buffer overflows
CVE-2021-47474		comedi: vmk80xx: fix bulk-buffer overflow
CVE-2021-47473		scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els()
CVE-2021-47471		drm: mxsfb: Fix NULL pointer dereference crash on unload
CVE-2021-47470		mm, slub: fix potential use-after-free in slab_debugfs_fops
CVE-2021-47468		isdn: mISDN: Fix sleeping function called from invalid context
CVE-2021-47467		kunit: fix reference count leak in kfree_at_end
CVE-2021-47466		mm, slub: fix potential memoryleak in kmem_cache_open()

Showing top 20 of 63 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Linux

Same vendor: Linux

V. Comments for CVE-2021-47444

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-47444— drm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read

Affected Version Matrix 8

I. Basic Information for CVE-2021-47444

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2021-47444

III. Intelligence Information for CVE-2021-47444

Other References for CVE-2021-47444 (3)

Same Patch Batch · Linux · 2024-05-22 · 63 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2021-47444

Leave a comment