CVE-2024-58073

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/msm/dpu: check dpu_plane_atomic_print_state() for valid sspp

Similar to the r_pipe sspp protect, add a check to protect the pipe state prints to avoid NULL ptr dereference for cases when the state is dumped without a corresponding atomic_check() where the pipe->sspp is assigned.

Patchwork: https://patchwork.freedesktop.org/patch/628404/

Affected Software

VendorProductVersion RangeStatus
LinuxLinux31f7148fd3704e0981b4eb6c6d13cf584da606c4 < 008af2074e4b91d34440102501b710c235a3b245affected
LinuxLinux31f7148fd3704e0981b4eb6c6d13cf584da606c4 < 789384eb1437aed94155dc0eac8a8a6ba1baf578affected
LinuxLinux6.13affected
LinuxLinux0 < 6.13unaffected
LinuxLinux6.13.2 <= 6.13.*unaffected
LinuxLinux6.14 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References