CVE-2024-46804

high

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add array index check for hdcp ddc access [Why] Coverity reports OVERRUN warning. Do not check if array index valid. [How] Check msg_id valid and valid array index.

References

https://git.kernel.org/stable/c/f338f99f6a04d03c802087d82a83561cbd5bdc99

https://git.kernel.org/stable/c/a3b5ee22a9d3a30045191da5678ca8451ebaea30

https://git.kernel.org/stable/c/8b5ccf3d011969417be653b5a145c72dbd30472c

https://git.kernel.org/stable/c/4e70c0f5251c25885c31ee84a31f99a01f7cf50e

https://git.kernel.org/stable/c/2a63c90c7a90ab2bd23deebc2814fc5b52abf6d2

https://git.kernel.org/stable/c/0ee4387c5a4b57ec733c3fb4365188d5979cd9c7

Details

Source: Mitre, NVD

Published: 2024-09-27

Updated: 2024-10-04

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

Detections

Analytics