CVE-2024-41089
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes
In nv17_tv_get_hd_modes(), the return value of drm_mode_duplicate() is assigned to mode, which will lead to a possible NULL pointer dereference on failure of drm_mode_duplicate(). The same applies to drm_cvt_mode(). Add a check to avoid null pointer dereference.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 6ee738610f41b59733f63718f0bdbcba7d3a3f12 < ffabad4aa91e33ced3c6ae793fb37771b3e9cb51 | affected |
| Linux | Linux | 6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 1c9f2e60150b4f13789064370e37f39e6e060f50 | affected |
| Linux | Linux | 6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 56fc4d3b0bdef691831cd95715a7ca3ebea98b2d | affected |
| Linux | Linux | 6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 5eecb49a6c268dc229005bf6e8167d4001dc09a0 | affected |
| Linux | Linux | 6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 30cbf6ffafbbdd8a6e4e5f0a2e9a9827ee83f3ad | affected |
| Linux | Linux | 6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 7ece609b0ce7a7ea8acdf512a77d1fee26621637 | affected |
| Linux | Linux | 6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 6e49a157d541e7e97b815a56f4bdfcbc89844a59 | affected |
| Linux | Linux | 6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 6d411c8ccc0137a612e0044489030a194ff5c843 | affected |
| Linux | Linux | 2.6.33 | affected |
| Linux | Linux | 0 < 2.6.33 | unaffected |
| Linux | Linux | 4.19.317 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.279 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.221 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.162 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.97 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.37 <= 6.6.* | unaffected |
| Linux | Linux | 6.9.8 <= 6.9.* | unaffected |
| Linux | Linux | 6.10 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/ffabad4aa91e33ced3c6ae793fb37771b3e9cb51
- https://git.kernel.org/stable/c/1c9f2e60150b4f13789064370e37f39e6e060f50
- https://git.kernel.org/stable/c/56fc4d3b0bdef691831cd95715a7ca3ebea98b2d
- https://git.kernel.org/stable/c/5eecb49a6c268dc229005bf6e8167d4001dc09a0
- https://git.kernel.org/stable/c/30cbf6ffafbbdd8a6e4e5f0a2e9a9827ee83f3ad
- https://git.kernel.org/stable/c/7ece609b0ce7a7ea8acdf512a77d1fee26621637
- https://git.kernel.org/stable/c/6e49a157d541e7e97b815a56f4bdfcbc89844a59
- https://git.kernel.org/stable/c/6d411c8ccc0137a612e0044489030a194ff5c843
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/ffabad4aa91e33ced3c6ae793fb37771b3e9cb51
- https://git.kernel.org/stable/c/1c9f2e60150b4f13789064370e37f39e6e060f50
- https://git.kernel.org/stable/c/56fc4d3b0bdef691831cd95715a7ca3ebea98b2d
- https://git.kernel.org/stable/c/5eecb49a6c268dc229005bf6e8167d4001dc09a0
- https://git.kernel.org/stable/c/30cbf6ffafbbdd8a6e4e5f0a2e9a9827ee83f3ad
- https://git.kernel.org/stable/c/7ece609b0ce7a7ea8acdf512a77d1fee26621637
- https://git.kernel.org/stable/c/6e49a157d541e7e97b815a56f4bdfcbc89844a59
- https://git.kernel.org/stable/c/6d411c8ccc0137a612e0044489030a194ff5c843
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.