CVE-2024-26914

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: fix incorrect mpc_combine array size

[why] MAX_SURFACES is per stream, while MAX_PLANES is per asic. The mpc_combine is an array that records all the planes per asic. Therefore MAX_PLANES should be used as the array size. Using MAX_SURFACES causes array overflow when there are more than 3 planes.

[how] Use the MAX_PLANES for the mpc_combine array size.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 0bd8ef618a42d7e6ea3f701065264e15678025e3affected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 39079fe8e660851abbafa90cd55cbf029210661faffected
LinuxLinux4.15affected
LinuxLinux0 < 4.15unaffected
LinuxLinux6.7.6 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References