Fix Out-of-Bounds Read Vulnerability in drm/amdgpu
CVE-2024-46724

7.1HIGH

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 September 2024

What is CVE-2024-46724?

A vulnerability has been identified in the Linux kernel's AMDGPU driver that allows for an out-of-bounds read. This issue stems from improper validation of the fb_channel_number range, which could lead to unintended access to memory outside the allocated bounds. The flaw potentially affects system stability and may expose sensitive information. The Linux development community has addressed this issue to enhance system security and reliability, ensuring safe operation of affected systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux d38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 725b728cc0c8c5fafdfb51cb0937870d33a40fa4

Linux d38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 45f7b02afc464c208e8f56bcbc672ef5c364c815

Linux d38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 32915dc909ff502823babfe07d5416c5b6e8a8b1

References

https://git.kernel.org/stable/c/725b728cc0c8c5fafdfb51cb0...
https://git.kernel.org/stable/c/45f7b02afc464c208e8f56bcb...
https://git.kernel.org/stable/c/32915dc909ff502823babfe07...

CVSS V3.1

Score:
7.1
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.