CVE-2024-49919
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer
This commit addresses a potential null pointer dereference issue in the
dcn201_acquire_free_pipe_for_layer function. The issue could occur
when head_pipe is null.
The fix adds a check to ensure head_pipe is not null before asserting
it. If head_pipe is null, the function returns NULL to prevent a
potential null pointer dereference.
Reported by smatch: drivers/gpu/drm/amd/amdgpu/../display/dc/resource/dcn201/dcn201_resource.c:1016 dcn201_acquire_free_pipe_for_layer() error: we previously assumed 'head_pipe' could be null (see line 1010)
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 16ce8fd94da8599bb6f0496895d392a69aead1c0 | affected |
| Linux | Linux | 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 390d757621f5f35d11a63ed7d9d3262ead240064 | affected |
| Linux | Linux | 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 8a1b1655a490a492a5a6987254c935ecce4eb9de | affected |
| Linux | Linux | 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < f22f4754aaa47d8c59f166ba3042182859e5dff7 | affected |
| Linux | Linux | 4.15 | affected |
| Linux | Linux | 0 < 4.15 | unaffected |
| Linux | Linux | 6.6.79 <= 6.6.* | unaffected |
| Linux | Linux | 6.10.14 <= 6.10.* | unaffected |
| Linux | Linux | 6.11.3 <= 6.11.* | unaffected |
| Linux | Linux | 6.12 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/16ce8fd94da8599bb6f0496895d392a69aead1c0
- https://git.kernel.org/stable/c/390d757621f5f35d11a63ed7d9d3262ead240064
- https://git.kernel.org/stable/c/8a1b1655a490a492a5a6987254c935ecce4eb9de
- https://git.kernel.org/stable/c/f22f4754aaa47d8c59f166ba3042182859e5dff7
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.