CVE-2024-41060

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/radeon: check bo_va->bo is non-NULL before using it

The call to radeon_vm_clear_freed might clear bo_va->bo, so we have to check it before dereferencing it.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux2f2624c23511b4bf0dd3d4c5ae167715513f351d < e8d3c53c6f1cccea9c03113f06dd39521c228831affected
LinuxLinux2f2624c23511b4bf0dd3d4c5ae167715513f351d < a2b201f83971df03c8e81a480b2f2846ae8ce1a3affected
LinuxLinux2f2624c23511b4bf0dd3d4c5ae167715513f351d < a9100f17428cb733c4f6fbb132d98bed76318342affected
LinuxLinux2f2624c23511b4bf0dd3d4c5ae167715513f351d < f13c96e0e325a057c03f8a47734adb360e112efeaffected
LinuxLinux2f2624c23511b4bf0dd3d4c5ae167715513f351d < 8a500b3a5f0a58c6f99039091fbd715f64f2f8afaffected
LinuxLinux2f2624c23511b4bf0dd3d4c5ae167715513f351d < 6fb15dcbcf4f212930350eaee174bb60ed40a536affected
LinuxLinux3.19affected
LinuxLinux0 < 3.19unaffected
LinuxLinux5.10.234 <= 5.10.*unaffected
LinuxLinux5.15.164 <= 5.15.*unaffected
LinuxLinux6.1.101 <= 6.1.*unaffected
LinuxLinux6.6.42 <= 6.6.*unaffected
LinuxLinux6.9.11 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References