In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Fix potential null pointer dereference in dc_dmub_srv
Fixes potential null pointer dereference warnings in the
dc_dmub_srv_cmd_list_queue_execute() and dc_dmub_srv_is_hw_pwr_up()
functions. In both functions, the ‘dc_dmub_srv’ variable was being
dereferenced before it was checked for null. This could lead to a null
pointer dereference if ‘dc_dmub_srv’ is null. The fix is to check if
‘dc_dmub_srv’ is null before dereferencing it. Thus moving the null checks
for ‘dc_dmub_srv’ to the beginning of the functions to ensure that
‘dc_dmub_srv’ is not null when it is dereferenced. Found by smatch & thus
fixing the below:
drivers/gpu/drm/amd/amdgpu/…/display/dc/dc_dmub_srv.c:133
dc_dmub_srv_cmd_list_queue_execute() warn: variable dereferenced before
check ‘dc_dmub_srv’ (see line 128)
drivers/gpu/drm/amd/amdgpu/…/display/dc/dc_dmub_srv.c:1167
dc_dmub_srv_is_hw_pwr_up() warn: variable dereferenced before check
‘dc_dmub_srv’ (see line 1164)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 18.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 23.10 | noarch | linux | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 14.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 16.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 18.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws | < any | UNKNOWN |
git.kernel.org/linus/d2b48f340d9e4a8fbeb1cdc84cd8da6ad143a907 (6.8-rc6)
git.kernel.org/stable/c/351080ba3414c96afff0f1338b4aeb2983195b80
git.kernel.org/stable/c/d2b48f340d9e4a8fbeb1cdc84cd8da6ad143a907
launchpad.net/bugs/cve/CVE-2024-26729
nvd.nist.gov/vuln/detail/CVE-2024-26729
security-tracker.debian.org/tracker/CVE-2024-26729
www.cve.org/CVERecord?id=CVE-2024-26729