CVE-2024-53201 in Linuxinformation

Résumé

par MITRE • 27/12/2024

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Fix null check for pipe_ctx->plane_state in dcn20_program_pipe

This commit addresses a null pointer dereference issue in dcn20_program_pipe(). Previously, commit 8e4ed3cf1642 ("drm/amd/display: Add null check for pipe_ctx->plane_state in dcn20_program_pipe") partially fixed the null pointer dereference issue. However, in dcn20_update_dchubp_dpp(), the variable pipe_ctx is passed in, and plane_state is accessed again through pipe_ctx. Multiple if statements directly call attributes of plane_state, leading to potential null pointer dereference issues. This patch adds necessary null checks to ensure stability.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

Linux

Réserver

19/11/2024

Divulgation

27/12/2024

Modérer

accepté

Entrée

VDB-289430

CPE

prêt

CWE

CWE-476 (confirmé)

CVSS

5.5 (NVD)

EPSS

0.00016

KEV

non

Activités

très faible

Secteur

Homeoffice, Industry, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2024-53201
NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-53201
CVE Details	https://www.cvedetails.com/cve/CVE-2024-53201/

◂ Précédent Aperçu Suivant ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!