CVE-2024-41089

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes

In nv17_tv_get_hd_modes(), the return value of drm_mode_duplicate() is assigned to mode, which will lead to a possible NULL pointer dereference on failure of drm_mode_duplicate(). The same applies to drm_cvt_mode(). Add a check to avoid null pointer dereference.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < ffabad4aa91e33ced3c6ae793fb37771b3e9cb51affected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 1c9f2e60150b4f13789064370e37f39e6e060f50affected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 56fc4d3b0bdef691831cd95715a7ca3ebea98b2daffected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 5eecb49a6c268dc229005bf6e8167d4001dc09a0affected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 30cbf6ffafbbdd8a6e4e5f0a2e9a9827ee83f3adaffected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 7ece609b0ce7a7ea8acdf512a77d1fee26621637affected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 6e49a157d541e7e97b815a56f4bdfcbc89844a59affected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 6d411c8ccc0137a612e0044489030a194ff5c843affected
LinuxLinux2.6.33affected
LinuxLinux0 < 2.6.33unaffected
LinuxLinux4.19.317 <= 4.19.*unaffected
LinuxLinux5.4.279 <= 5.4.*unaffected
LinuxLinux5.10.221 <= 5.10.*unaffected
LinuxLinux5.15.162 <= 5.15.*unaffected
LinuxLinux6.1.97 <= 6.1.*unaffected
LinuxLinux6.6.37 <= 6.6.*unaffected
LinuxLinux6.9.8 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References