CVE-2024-46778

MEDIUM5.5

drm/amd/display: Check UnboundedRequestEnabled's value

Published Sep 18, 2024

Modified 8 months ago

No fix available

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Check UnboundedRequestEnabled's value

CalculateSwathAndDETConfiguration_params_st's UnboundedRequestEnabled is a pointer (i.e. dml_bool_t *UnboundedRequestEnabled), and thus if (p->UnboundedRequestEnabled) checks its address, not bool value.

This fixes 1 REVERSE_INULL issue reported by Coverity.

References

WEBhttps://git.kernel.org/stable/c/4e2b49a85e7974d21364798c5d4aa8070aa864d9 WEBhttps://git.kernel.org/stable/c/a7b38c7852093385d0605aa3c8a2efd6edd1edfd ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2024-46778

CVSS Analysis

CVSS v3.1

5.5

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

5.5/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Ecosystems

Timeline

PublishedSep 18, 2024

ModifiedMay 4, 2025