CVE-2024-53133
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Handle dml allocation failure to avoid crash
[Why] In the case where a dml allocation fails for any reason, the current state's dml contexts would no longer be valid. Then subsequent calls dc_state_copy_internal would shallow copy invalid memory and if the new state was released, a double free would occur.
[How] Reset dml pointers in new_state to NULL and avoid invalid pointer
(cherry picked from commit bcafdc61529a48f6f06355d78eb41b3aeda5296c)
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | abd26a3252cbd1a3ae4e46d37596d176fe50b41a < 874ff59cde8fc525112dda26b501a1bac17dde9f | affected |
| Linux | Linux | abd26a3252cbd1a3ae4e46d37596d176fe50b41a < 6825cb07b79ffeb1d90ffaa7a1227462cdca34ae | affected |
| Linux | Linux | 2064f7529dfe0305d6fafda77fdf66701d428db5 | affected |
| Linux | Linux | 6.7.12 < 6.8 | affected |
| Linux | Linux | 6.8 | affected |
| Linux | Linux | 0 < 6.8 | unaffected |
| Linux | Linux | 6.11.10 <= 6.11.* | unaffected |
| Linux | Linux | 6.12 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
- https://git.kernel.org/stable/c/874ff59cde8fc525112dda26b501a1bac17dde9f
- https://git.kernel.org/stable/c/6825cb07b79ffeb1d90ffaa7a1227462cdca34ae
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.