CVE-2024-46870

{"id": "CVE-2024-46870", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.7, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.0}]}, "published": "2024-10-09T14:15:07.463", "references": [{"url": "https://git.kernel.org/stable/c/31c254c9cd4b122a10db297124f867107a696d83", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/7c70e60fbf4bff1123f0e8d5cb1ae71df6164d7f", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-362"}]}], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Disable DMCUB timeout for DCN35\n\n[Why]\nDMCUB can intermittently take longer than expected to process commands.\n\nOld ASIC policy was to continue while logging a diagnostic error - which\nworks fine for ASIC without IPS, but with IPS this could lead to a race\ncondition where we attempt to access DCN state while it's inaccessible,\nleading to a system hang when the NIU port is not disabled or register\naccesses that timeout and the display configuration in an undefined\nstate.\n\n[How]\nWe need to investigate why these accesses take longer than expected, but\nfor now we should disable the timeout on DCN35 to avoid this race\ncondition. Since the waits happen only at lower interrupt levels the\nrisk of taking too long at higher IRQ and causing a system watchdog\ntimeout are minimal."}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/amd/display: Deshabilitar el tiempo de espera de DMCUB para DCN35 [Por qu\u00e9] DMCUB puede tardar intermitentemente m\u00e1s de lo esperado en procesar comandos. La antigua pol\u00edtica de ASIC era continuar mientras se registra un error de diagn\u00f3stico, lo que funciona bien para ASIC sin IPS, pero con IPS esto podr\u00eda llevar a una condici\u00f3n de ejecuci\u00f3n donde intentamos acceder al estado de DCN mientras es inaccesible, lo que lleva a un bloqueo del sistema cuando el puerto NIU no est\u00e1 deshabilitado o los accesos de registro agotan ese tiempo de espera y la configuraci\u00f3n de pantalla en un estado indefinido. [C\u00f3mo] Necesitamos investigar por qu\u00e9 estos accesos tardan m\u00e1s de lo esperado, pero por ahora debemos deshabilitar el tiempo de espera en DCN35 para evitar esta condici\u00f3n de ejecuci\u00f3n. Dado que las esperas ocurren solo en niveles de interrupci\u00f3n m\u00e1s bajos, el riesgo de tomar demasiado tiempo en IRQ m\u00e1s alto y causar un tiempo de espera del perro guardi\u00e1n del sistema es m\u00ednimo."}], "lastModified": "2024-10-23T14:26:28.690", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24175937-56EC-4F8D-B998-C00E8F09D4A8", "versionEndExcluding": "6.10.9"}], "operator": "OR"}]}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}