drm/amd/display: Add a dc_state NULL check in dc_state_release

...

The vulnerability of the `dc_state_create_copy()` function in the `drivers/gpu/drm/amd/display/dc/core/dc_state.c` file of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the dcstatecreatecopy function in the drivers/gpu/drm/amd/display/dc/core/dcstate.c file of the Linux kernel is related to the repeated release of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, a...

PT-2024-10003

Name of the Vulnerable Software and Affected Versions Linux Kernel versions prior to 6.11.9 Description The issue is related to the dc state copy internal function in the Linux kernel's drm/amd/display module. It concerns a double free vulnerability that occurs when a dml allocation fails, causin...

CVE-2024-49972 drm/amd/display: Deallocate DML memory if allocation fails

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Deallocate DML memory if allocation fails Why When DC state create DML memory allocation fails, memory is not deallocated subsequently, resulting in uninitialized structure that is not NULL. How Deallocate memory...

CVE-2024-49972 drm/amd/display: Deallocate DML memory if allocation fails

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Deallocate DML memory if allocation fails Why When DC state create DML memory allocation fails, memory is not deallocated subsequently, resulting in uninitialized structure that is not NULL. How Deallocate memory...

SUSE CVE-2024-46850

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn35setdrr and dcstatedestruct dcstatedestruct nulls the resource context of the DC state. The pipe context passed to dcn35setdrr is a member of this resource context. If dcstatedestruct is...

DEBIAN-CVE-2024-46851

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn10setdrr and dcstatedestruct dcstatedestruct nulls the resource context of the DC state. The pipe context passed to dcn10setdrr is a member of this resource context. If dcstatedestruct is...

UBUNTU-CVE-2024-46851

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn10setdrr and dcstatedestruct dcstatedestruct nulls the resource context of the DC state. The pipe context passed to dcn10setdrr is a member of this resource context. If dcstatedestruct is...

CVE-2024-46851 drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct()

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn10setdrr and dcstatedestruct dcstatedestruct nulls the resource context of the DC state. The pipe context passed to dcn10setdrr is a member of this resource context. If dcstatedestruct is...

CVE-2024-46850

CVE-2024-46850 – Linux kernel drm/amd/display race condition : The issue arises in dcn35_set_drr() when the DC state’s resource context is nulled by dc_state_destruct() while an IRQ path uses the timing generator. The documented root cause is a race where nulling happens after a NULL check, poten...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a competition between the dcn10setdrr function and the dcstatedestruct function...

SUSE CVE-2024-26948

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add a dcstate NULL check in dcstaterelease How Check wheather state is NULL before releasing it...

DEBIAN-CVE-2024-26948

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add a dcstate NULL check in dcstaterelease How Check wheather state is NULL before releasing it...

PT-2024-21592

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved by adding a dc state NULL check in dc state release. The issue is addressed by checking whether the state is NULL before releasing i...