CVE-2024-46810

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ

Make sure the connector is fully initialized before signalling any HPD events via drm_kms_helper_hotplug_event(), otherwise this may lead to NULL pointer dereference.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxf25ee5017e4fe520dbef1a001d60e3a678846508 < adc5674c23b8191e596ed0dbaa9600265ac896a8affected
LinuxLinuxf25ee5017e4fe520dbef1a001d60e3a678846508 < e1b121f21bbc56a6ae035aa5b77daac62bfb9be5affected
LinuxLinuxf25ee5017e4fe520dbef1a001d60e3a678846508 < 9d567126474e68f959b2c2543c375f3bb32e948aaffected
LinuxLinuxf25ee5017e4fe520dbef1a001d60e3a678846508 < 1fb13693953737783b424aa4712f0a27a9eaf5a8affected
LinuxLinuxf25ee5017e4fe520dbef1a001d60e3a678846508 < 162e48cb1d84c2c966b649b8ac5c9d4f75f6d44faffected
LinuxLinux5.3affected
LinuxLinux0 < 5.3unaffected
LinuxLinux5.15.167 <= 5.15.*unaffected
LinuxLinux6.1.109 <= 6.1.*unaffected
LinuxLinux6.6.50 <= 6.6.*unaffected
LinuxLinux6.10.9 <= 6.10.*unaffected
LinuxLinux6.11 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References