PT-2026-34914

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: dsi: Store driver data before invoking mipi dsi host register The call to mipi dsi host register triggers a callback to mtk dsi bind, which uses dev get drvdata to retrieve the mtk dsi struct, so this structure need...

SUSE CVE-2023-53388

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case drmdevput is called, destroying the drmdevice object. However a pointer to it was still being held in the private object, and that pointer...

CVE-2023-53388

Summary of CVE-2023-53388 : In the Linux kernel, the DRM/Mediatek driver had a dangling pointer in the error path of the bind sequence. When mtk_drm_bind() fails, the code previously called drm_dev_put() to destroy the drm_device, but a private object still held a pointer to that device. If a sus...

Linux Distros Unpatched Vulnerability : CVE-2024-38549

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/mediatek: Add 0 size check to mtkdrmgemobj Add a check to mtkdrmgeminit if we attempt to allocate a GEM object of 0 bytes. Currently, no such check exists a...

Vulnerability of the mtk_drm_bind() function in the drivers/gpu/drm/mediatek/mtk_drm_drv.c module – This driver provides support for Direct Rendering Infrastructure (DRI) in Mediatek graphics cards in Linux operating systems. It allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the mtkdrmbind function in the drivers/gpu/drm/mediatek/mtkdrmdrv.c module – The DRI driver for Mediatek graphics cards in Linux operating systems relies on the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the...