CVE-2024-46803

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amdkfd: Check debug trap enable before write dbg_ev_file

In interrupt context, write dbg_ev_file will be run by work queue. It will cause write dbg_ev_file execution after debug_trap_disable, which will cause NULL pointer access. v2: cancel work "debug_event_workarea" before set dbg_ev_file as NULL.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0ab2d7532b05a3e7c06fd3b0c8bd6b46c1dfb508 < e6ea3b8fe398915338147fe54dd2db8155fdafd8affected
LinuxLinux0ab2d7532b05a3e7c06fd3b0c8bd6b46c1dfb508 < 820dcbd38a77bd5fdc4236d521c1c122841227d0affected
LinuxLinux0ab2d7532b05a3e7c06fd3b0c8bd6b46c1dfb508 < 547033b593063eb85bfdf9b25a5f1b8fd1911be2affected
LinuxLinux6.5affected
LinuxLinux0 < 6.5unaffected
LinuxLinux6.6.50 <= 6.6.*unaffected
LinuxLinux6.10.9 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References