CVE-2024-42120

medium

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check pipe offset before setting vblank pipe_ctx has a size of MAX_PIPES so checking its index before accessing the array. This fixes an OVERRUN issue reported by Coverity.

References

https://git.kernel.org/stable/c/d2c3645a4a5ae5d933b4116c305d9d82b8199dbf

https://git.kernel.org/stable/c/c5ec2afeeee4c91cebc4eff6d4f1ecf4047259f4

https://git.kernel.org/stable/c/b2e9abc95583ac7bbb2c47da4d476a798146dfd6

https://git.kernel.org/stable/c/96bf81cc1bd058bb8af6e755a548e926e934dfd1

https://git.kernel.org/stable/c/5396a70e8cf462ec5ccf2dc8de103c79de9489e6

https://git.kernel.org/stable/c/0b3702f9d43d163fd05e43b7d7e22e766dbef329

Details

Source: Mitre, NVD

Published: 2024-07-30

Updated: 2024-07-30

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium