CVE-2024-49990

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/xe/hdcp: Check GSC structure validity

Sometimes xe_gsc is not initialized when checked at HDCP capability check. Add gsc structure check to avoid null pointer error.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxdd08ebf6c3525a7ea2186e636df064ea47281987 < c940627857eedca8407b84b40ceb4252b100d291affected
LinuxLinuxdd08ebf6c3525a7ea2186e636df064ea47281987 < 7266a424b1e502745170322e3c27f697d12de627affected
LinuxLinuxdd08ebf6c3525a7ea2186e636df064ea47281987 < b4224f6bae3801d589f815672ec62800a1501b0daffected
LinuxLinux6.8affected
LinuxLinux0 < 6.8unaffected
LinuxLinux6.10.14 <= 6.10.*unaffected
LinuxLinux6.11.3 <= 6.11.*unaffected
LinuxLinux6.12 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References