Fix Out-of-bounds read warning in drm/amd/pm
CVE-2024-46731

7.1HIGH

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 September 2024

What is CVE-2024-46731?

A vulnerability exists in the Linux kernel's handling of AMD graphics drivers, which may lead to out-of-bounds read issues under specific conditions. The problem arises from the use of an invalid index, specifically when handling the mc_data[] array. When the index i equals 0, an attempt to access an element at i - 1U could result in reading memory outside the intended range. This defect poses a risk in environments where the kernel interacts with AMD graphics hardware, potentially leading to unauthorized memory access or application crashes. Comprehensive updates and patches are provided to mitigate this issue, ensuring safer operations and enhanced integrity of Linux systems utilizing AMD graphics.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux c82baa28184356a75c0157129f88af42b2e7b695 < 38e32a0d837443c91c4b615a067b976cfb925376

Linux c82baa28184356a75c0157129f88af42b2e7b695 < 3317966efcdc5101e93db21514b68917e7eb34ea

Linux c82baa28184356a75c0157129f88af42b2e7b695 < 20c6373a6be93039f9d66029bb1e21038a060be1

References

https://git.kernel.org/stable/c/38e32a0d837443c91c4b615a0...
https://git.kernel.org/stable/c/3317966efcdc5101e93db2151...
https://git.kernel.org/stable/c/20c6373a6be93039f9d66029b...

CVSS V3.1

Score:
7.1
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.