Fix for Out-of-Bounds Read Warning in drm/amdgpu
CVE-2024-46723

7.1HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 September 2024

What is CVE-2024-46723?

A vulnerability in the Linux kernel concerning the AMD graphics driver has been addressed, related to an out-of-bounds read issue with the ucode[] function. This flaw could potentially allow for unintended memory access, which may lead to data corruption or exploitation. The fix ensures that proper bounds checking is in place to mitigate risks of accessing memory outside the allocated areas, thus enhancing the security and stability of systems utilizing AMD graphics in the Linux environment.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux d38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 82ac8f1d02886b5d8aeb9e058989d3bd6fc581e2

Linux d38ceaf99ed015f2a0b9af3499791bd3a3daae21

Linux d38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 5f09fa5e0ad45fbca71933a0e024ca52da47d59b

References

https://git.kernel.org/stable/c/82ac8f1d02886b5d8aeb9e058...

https://git.kernel.org/stable/c/e789e05388854a5436b2b5d86...

https://git.kernel.org/stable/c/5f09fa5e0ad45fbca71933a0e...

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 18, 2024
Vulnerability Reserved
Sep 11, 2024

JSON

Linux