CVE-2024-49904

The CVE-2024-49904 issue affects the Linux kernel DRM/AMDGPU subsystem. The vulnerability arises from a missing list empty check in list_for_each_entry_safe, which can lead to a NULL pointer dereference in corner cases. The advisory notes that the fix is to add a list empty check to avoid the nul...

CVE-2024-49904 drm/amdgpu: add list empty check to avoid null pointer issue

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add list empty check to avoid null pointer issue Add list empty check to avoid null pointer issues in some corner cases. - listforeachentrysafe...

CVE-2024-49896 drm/amd/display: Check stream before comparing them

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check stream before comparing them WHAT & HOW amdgpudm can pass a null stream to dcisstreamunchanged. It is necessary to check for null before dereferencing them. This fixes 1 FORWARDNULL issue reported by Coveri...

CVE-2024-47683

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip Recompute DSC Params if no Stream on Link why Encounter NULL pointer dereference uner mst + dsc setup. BUG: kernel NULL pointer dereference, address: 0000000000000008 PGD 0 P4D 0 Oops: 0000 1 PREEMPT SMP NOP...

PT-2024-33745

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58 Description: A null pointer dereference issue has been resolved in the Linux kernel. The problem occurred because the afb variable in the amdgpu dm plane handle cursor update function was assumed to be nu...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper handling of null pointer dereferences in the amdgpudmplanehandlecursorupdate function in the...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an issue with the null value of the afb variable not being checked in the amdgpudmupdatecursor function of t...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse issue in the drm/amdgpu component during GPU recovery...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper pointer handling in the drm/amdkfd component during an amdgpubounref call...

The vulnerability of the atomctrl_retrieve_ac_timing() function in the amdgpu driver of the Linux operating system allows a attacker to compromise the confidentiality and accessibility of the protected information.

The vulnerability of the atomctrlretrieveactiming function in the driver drivers/gpu/drm/amd/pm/powerplay/hwmgr/ppatomctrl.c of the amdgpu kernel in the Linux operating system is related to reading memory beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to...

The vulnerability of the amdgpu_cgs_get_firmware_info() function in the Linux operating system allows a hacker to compromise the confidentiality and accessibility of protected information.

The vulnerability of the amdgpucgsgetfirmwareinfo function in the Linux operating system is related to reading memory beyond the bounds of the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of the protected information...

CVE-2024-46835

...

CVE-2024-44977

...

The vulnerability of the amdgpu_ring_init() function in the amdgpu driver of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the amdgpuringinit function in the drivers/gpu/drm/amd/amdgpu/amdgpuring.c file of the amdgpu kernel in the Linux operating system is related to memory writing beyond the bounds of the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2024-12780)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12780 advisory. - VMCI: Fix use-after-free when removing resource in vmciresourceremove David Fernandez Gonzalez Orabug: 37037205 CVE-2024-46738 - exec: Fix ToCTo...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-46725)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46725 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix out-of-bounds write...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-42228)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42228 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Using uninitialized value si...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-46722)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46722 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix mcdata out-of-bounds rea...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-43909)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43909 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/pm: Fix the null pointer...

CLSA-2024-1728584513 Fix of 20 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-38588 - ftrace: Fix possible warning on checking all pages used in ftraceprocesslocs - ftrace: Fix possible use-after-free issue in ftracelocation CVE-url: https://ubuntu.com/security/CVE-2024-46744 - Squashfs: sanity check symbolic link size CVE-url:...