CVE-2024-39471

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: add error handle to avoid out-of-bounds

if the sdma_v4_0_irq_id_to_seq return -EINVAL, the process should be stop to avoid out-of-bounds read, so directly return -EINVAL.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7d0e6329dfdcfe48311f8888d6a8dfa73bee00a9 < 5594971e02764aa1c8210ffb838cb4e7897716e8affected
LinuxLinux7d0e6329dfdcfe48311f8888d6a8dfa73bee00a9 < 8112fa72b7f139052843ff484130d6f97e9f052faffected
LinuxLinux7d0e6329dfdcfe48311f8888d6a8dfa73bee00a9 < ea906e9ac61e3152bef63597f2d9f4a812fc346aaffected
LinuxLinux7d0e6329dfdcfe48311f8888d6a8dfa73bee00a9 < 011552f29f20842c9a7a21bffe1f6a2d6457ba46affected
LinuxLinux7d0e6329dfdcfe48311f8888d6a8dfa73bee00a9 < 5b0a3dc3e87821acb80e841b464d335aff242691affected
LinuxLinux7d0e6329dfdcfe48311f8888d6a8dfa73bee00a9 < 0964c84b93db7fbf74f357c1e20957850e092db3affected
LinuxLinux7d0e6329dfdcfe48311f8888d6a8dfa73bee00a9 < 8b2faf1a4f3b6c748c0da36cda865a226534d520affected
LinuxLinux5.4affected
LinuxLinux0 < 5.4unaffected
LinuxLinux5.4.278 <= 5.4.*unaffected
LinuxLinux5.10.219 <= 5.10.*unaffected
LinuxLinux5.15.161 <= 5.15.*unaffected
LinuxLinux6.1.94 <= 6.1.*unaffected
LinuxLinux6.6.34 <= 6.6.*unaffected
LinuxLinux6.9.5 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References