CVE-2024-46730

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Ensure array index tg_inst won't be -1

[WHY & HOW] tg_inst will be a negative if timing_generator_count equals 0, which should be checked before used.

This fixes 2 OVERRUN issues reported by Coverity.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < a64284b9e1999ad5580debced4bc6d6adb28aad4affected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 687fe329f18ab0ab0496b20ed2cb003d4879d931affected
LinuxLinux4.15affected
LinuxLinux0 < 4.15unaffected
LinuxLinux6.10.9 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References