CVE-2024-46804

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Add array index check for hdcp ddc access

[Why] Coverity reports OVERRUN warning. Do not check if array index valid.

[How] Check msg_id valid and valid array index.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux4c283fdac08abf3211533f70623c90a34f41d08d < 2a63c90c7a90ab2bd23deebc2814fc5b52abf6d2affected
LinuxLinux4c283fdac08abf3211533f70623c90a34f41d08d < 0ee4387c5a4b57ec733c3fb4365188d5979cd9c7affected
LinuxLinux4c283fdac08abf3211533f70623c90a34f41d08d < f338f99f6a04d03c802087d82a83561cbd5bdc99affected
LinuxLinux4c283fdac08abf3211533f70623c90a34f41d08d < 8b5ccf3d011969417be653b5a145c72dbd30472caffected
LinuxLinux4c283fdac08abf3211533f70623c90a34f41d08d < a3b5ee22a9d3a30045191da5678ca8451ebaea30affected
LinuxLinux4c283fdac08abf3211533f70623c90a34f41d08d < 4e70c0f5251c25885c31ee84a31f99a01f7cf50eaffected
LinuxLinux5.5affected
LinuxLinux0 < 5.5unaffected
LinuxLinux5.10.226 <= 5.10.*unaffected
LinuxLinux5.15.167 <= 5.15.*unaffected
LinuxLinux6.1.109 <= 6.1.*unaffected
LinuxLinux6.6.50 <= 6.6.*unaffected
LinuxLinux6.10.9 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References