CVE-2024-46813

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check link_index before accessing dc->links[] [WHY & HOW] dc->links[] has max size of MAX_LINKS and NULL is return when trying to access with out-of-bound index. This fixes 3 OVERRUN and 1 RESOURCE_LEAK issues reported by Coverity.
Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

04 Oct 2024, 17:38

Type Values Removed Values Added
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
References () https://git.kernel.org/stable/c/8aa2864044b9d13e95fe224f32e808afbf79ecdf - () https://git.kernel.org/stable/c/8aa2864044b9d13e95fe224f32e808afbf79ecdf - Patch
References () https://git.kernel.org/stable/c/ac04759b4a002969cf0f1384f1b8bb2001cfa782 - () https://git.kernel.org/stable/c/ac04759b4a002969cf0f1384f1b8bb2001cfa782 - Patch
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
CWE CWE-129
First Time Linux linux Kernel
Linux

30 Sep 2024, 12:45

Type Values Removed Values Added
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/amd/display: comprobar link_index antes de acceder a dc->links[] [POR QUÉ Y CÓMO] dc->links[] tiene un tamaño máximo de MAX_LINKS y se devuelve NULL cuando se intenta acceder con un índice fuera de los límites. Esto soluciona 3 problemas de OVERRUN y 1 RESOURCE_LEAK informados por Coverity.

27 Sep 2024, 13:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-27 13:15

Updated : 2024-10-04 17:38


NVD link : CVE-2024-46813

Mitre link : CVE-2024-46813

CVE.ORG link : CVE-2024-46813


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-129

Improper Validation of Array Index