Lucene search

K

GoogleOSV:CVE-2024-26949

HistoryMay 01, 2024 - 6:15 a.m.

CVE-2024-26949

2024-05-0106:15:00

Google

osv.dev

2

linux kernel

vulnerability

resolved

drm/amdgpu/pm

power limit

initialization

sriov

powerplay_table

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.7

Confidence

Low

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/pm: Fix NULL pointer dereference when get power limit Because powerplay_table initialization is skipped under sriov case, We check and set default lower and upper OD value if powerplay_table is NULL.

References

git.kernel.org/linus/08ae9ef829b8055c2fdc8cfee37510c1f4721a07

git.kernel.org/stable/c/08ae9ef829b8055c2fdc8cfee37510c1f4721a07

git.kernel.org/stable/c/99c2f1563b1400cc8331fc79d19ada1bb95bb388

git.kernel.org/stable/c/b8eaa8ef1f1157a9f330e36e66bdd7a693309948

ubuntu.com/security/CVE-2024-26949

ubuntu.com/security/notices/USN-6816-1

ubuntu.com/security/notices/USN-6817-1

ubuntu.com/security/notices/USN-6817-2

ubuntu.com/security/notices/USN-6817-3

ubuntu.com/security/notices/USN-6878-1

www.cve.org/CVERecord?id=CVE-2024-26949

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.7

Confidence

Low

Related for OSV:CVE-2024-26949

vulnrichment1 nessus8 ubuntucve1 cbl_mariner2 debiancve1 cvelist1 cve1 redhatcve1 nvd1 openvas5 osv5 ubuntu5