In the Linux kernel, the following vulnerability has been resolved:
drm/msm/dpu: check for valid hw_pp in dpu_encoder_helper_phys_cleanup The
commit 8b45a26f2ba9 (“drm/msm/dpu: reserve cdm blocks for writeback in case
of YUV output”) introduced a smatch warning about another conditional block
in dpu_encoder_helper_phys_cleanup() which had assumed hw_pp will always be
valid which may not necessarily be true. Lets fix the other conditional
block by making sure hw_pp is valid before dereferencing it. Patchwork:
https://patchwork.freedesktop.org/patch/574878/
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 23.10 | noarch | linux | < 6.5.0-44.44 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws-6.5 | < 6.5.0-1023.23~22.04.1 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-azure-6.5 | < 6.5.0-1024.25~22.04.1 | UNKNOWN |
ubuntu | 23.10 | noarch | linux-gcp | < 6.5.0-1024.26 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-gcp-6.5 | < 6.5.0-1024.26~22.04.1 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-hwe-6.5 | < 6.5.0-44.44~22.04.1 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-lowlatency-hwe-6.5 | < 6.5.0-44.44.1~22.04.1 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-nvidia-6.5 | < 6.5.0-1023.24 | UNKNOWN |
ubuntu | 22.04 | noarch | linux-oem-6.5 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-oracle-6.5 | < 6.5.0-1026.26~22.04.1 | UNKNOWN |
git.kernel.org/linus/7f3d03c48b1eb6bc45ab20ca98b8b11be25f9f52 (6.8-rc4)
git.kernel.org/stable/c/79592a6e7bdc1d05460c95f891f5e5263a107af8
git.kernel.org/stable/c/7f3d03c48b1eb6bc45ab20ca98b8b11be25f9f52
git.kernel.org/stable/c/eb4f56f3ff5799ca754ae6d811803a63fe25a4a2
git.kernel.org/stable/c/fb8bfc6ea3cd8c5ac3d35711d064e2f6646aec17
launchpad.net/bugs/cve/CVE-2024-26667
nvd.nist.gov/vuln/detail/CVE-2024-26667
security-tracker.debian.org/tracker/CVE-2024-26667
ubuntu.com/security/notices/USN-6895-1
ubuntu.com/security/notices/USN-6895-2
ubuntu.com/security/notices/USN-6895-3
ubuntu.com/security/notices/USN-6900-1
www.cve.org/CVERecord?id=CVE-2024-26667