CVE-2024-26647

MEDIUM5.5

drm/amd/display: Fix late derefrence 'dsc' check in 'link_set_dsc_pps_packet()'

Published Mar 26, 2024

Modified 7 months ago

No fix available

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Fix late derefrence 'dsc' check in 'link_set_dsc_pps_packet()'

In link_set_dsc_pps_packet(), 'struct display_stream_compressor *dsc' was dereferenced in a DC_LOGGER_INIT(dsc->ctx->logger); before the 'dsc' NULL pointer check.

Fixes the below: drivers/gpu/drm/amd/amdgpu/../display/dc/link/link_dpms.c:905 link_set_dsc_pps_packet() warn: variable dereferenced before check 'dsc' (see line 903)

References

WEBhttps://git.kernel.org/stable/c/3bb9b1f958c3d986ed90a3ff009f1e77e9553207 WEBhttps://git.kernel.org/stable/c/6aa5ede6665122f4c8abce3c6eba06b49e54d25c WEBhttps://git.kernel.org/stable/c/cf656fc7276e5b3709a81bc9d9639459be2b2647 ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2024-26647

CVSS Analysis

CVSS v3.1

5.5

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

5.5/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Ecosystems

Timeline

PublishedMar 26, 2024

ModifiedMay 21, 2025