CVE-2024-49896

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Check stream before comparing them

[WHAT & HOW] amdgpu_dm can pass a null stream to dc_is_stream_unchanged. It is necessary to check for null before dereferencing them.

This fixes 1 FORWARD_NULL issue reported by Coverity.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 3944d226f55235a960d8f1135927f95e9801be12affected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 471c53350ab83e47a2a117c2738ce0363785976eaffected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 0167d570f6a0b38689c4a0e50bf79c518d827500affected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 14db8692afe1aa2143b673856bb603713d8ea93faffected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < e8da54b7f8a17e44e67ea6d1037f35450af28115affected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 42d31a33643813cce55ee1ebbad3a2d0d24a08e0affected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 5b4b13e678b15975055f4ff1ce4cf0ce4c19b6c4affected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < e41a291e1bef1153bba091b6580ecc7affc53c82affected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 35ff747c86767937ee1e0ca987545b7eed7a0810affected
LinuxLinux4.15affected
LinuxLinux0 < 4.15unaffected
LinuxLinux4.19.323 <= 4.19.*unaffected
LinuxLinux5.4.285 <= 5.4.*unaffected
LinuxLinux5.10.227 <= 5.10.*unaffected
LinuxLinux5.15.168 <= 5.15.*unaffected
LinuxLinux6.1.113 <= 6.1.*unaffected
LinuxLinux6.6.55 <= 6.6.*unaffected
LinuxLinux6.10.14 <= 6.10.*unaffected
LinuxLinux6.11.3 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References