CVE-2024-26662

MEDIUM5.5

drm/amd/display: Fix 'panel_cntl' could be null in 'dcn21_set_backlight_level()'

Published Apr 2, 2024

Modified 8 months ago

No fix available

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Fix 'panel_cntl' could be null in 'dcn21_set_backlight_level()'

'panel_cntl' structure used to control the display panel could be null, dereferencing it could lead to a null pointer access.

Fixes the below: drivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn21/dcn21_hwseq.c:269 dcn21_set_backlight_level() error: we previously assumed 'panel_cntl' could be null (see line 250)

References

WEBhttps://git.kernel.org/stable/c/0c863cab0e9173f8b6c7bc328bee3b8625f131b5 WEBhttps://git.kernel.org/stable/c/2e150ccea13129eb048679114808eb9770443e4d WEBhttps://git.kernel.org/stable/c/e96fddb32931d007db12b1fce9b5e8e4c080401b ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2024-26662

CVSS Analysis

CVSS v3.1

5.5

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

5.5/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Ecosystems

Timeline

PublishedApr 2, 2024

ModifiedMay 4, 2025