CVE-2024-41095

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes

In nv17_tv_get_ld_modes(), the return value of drm_mode_duplicate() is assigned to mode, which will lead to a possible NULL pointer dereference on failure of drm_mode_duplicate(). Add a check to avoid npd.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 9289cd3450d1da3e271ef4b054d4d2932c41243eaffected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < dbd75f32252508ed6c46c3288a282c301a57ceebaffected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 259549b2ccf795b7f91f7b5aba47286addcfa389affected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 0d17604f2e44b3df21e218fe8fb3b836d41bac49affected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < f95ed0f54b3d3faecae1140ddab854f904a6e7c8affected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < cb751e48bbcffd292090f7882b23b215111b3d72affected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < bdda5072494f2a7215d94fc4124ad1949a218714affected
LinuxLinux6ee738610f41b59733f63718f0bdbcba7d3a3f12 < 66edf3fb331b6c55439b10f9862987b0916b3726affected
LinuxLinux2.6.33affected
LinuxLinux0 < 2.6.33unaffected
LinuxLinux4.19.317 <= 4.19.*unaffected
LinuxLinux5.4.279 <= 5.4.*unaffected
LinuxLinux5.10.221 <= 5.10.*unaffected
LinuxLinux5.15.162 <= 5.15.*unaffected
LinuxLinux6.1.97 <= 6.1.*unaffected
LinuxLinux6.6.37 <= 6.6.*unaffected
LinuxLinux6.9.8 <= 6.9.*unaffected
LinuxLinux6.10 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References