Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistLinuxCVELIST:CVE-2024-44967
HistorySep 04, 2024 - 6:56 p.m.

CVE-2024-44967 drm/mgag200: Bind I2C lifetime to DRM device

2024-09-0418:56:44
Linux
www.cve.org
1
linux kernel
vulnerability
resolved
drm/mgag200
i2c adapter
drm device

EPSS

0

Percentile

16.3%

JSON

In the Linux kernel, the following vulnerability has been resolved:

drm/mgag200: Bind I2C lifetime to DRM device

Managed cleanup with devm_add_action_or_reset() will release the I2C
adapter when the underlying Linux device goes away. But the connector
still refers to it, so this cleanup leaves behind a stale pointer
in struct drm_connector.ddc.

Bind the lifetime of the I2C adapter to the connector’s lifetime by
using DRM’s managed release. When the DRM device goes away (after
the Linux device) DRM will first clean up the connector and then
clean up the I2C adapter.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/gpu/drm/mgag200/mgag200_i2c.c"
    ],
    "versions": [
      {
        "version": "b279df242972",
        "lessThan": "55a6916db771",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b279df242972",
        "lessThan": "81d34df84362",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b279df242972",
        "lessThan": "9d96b91e03cb",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b279df242972",
        "lessThan": "eb1ae34e48a0",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/gpu/drm/mgag200/mgag200_i2c.c"
    ],
    "versions": [
      {
        "version": "6.0",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.0",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.1.105",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.46",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.10.5",
        "lessThanOrEqual": "6.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.11",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

redhatcve 1
cve 1
vulnrichment 1
debiancve 1
osv 1
nvd 1
redhatcve
redhatcve
CVE-2024-44967
2024-09-04 20:19:55
cve
cve
CVE-2024-44967
2024-09-04 19:15:31
vulnrichment
vulnrichment
CVE-2024-44967 drm/mgag200: Bind I2C lifetime to DRM device
2024-09-04 18:56:44
debiancve
debiancve
CVE-2024-44967
2024-09-04 19:15:31
osv
osv
CVE-2024-44967
2024-09-04 19:15:31
nvd
nvd
CVE-2024-44967
2024-09-04 19:15:31

EPSS

0

Percentile

16.3%

JSON
Related for CVELIST:CVE-2024-44967
redhatcve1cve1vulnrichment1debiancve1osv1nvd1