CVE-2024-46804

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add array index check for hdcp ddc access [Why] Coverity reports OVERRUN warning. Do not check if array index valid. [How] Check msg_id valid and valid array index.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

04 Oct 2024, 17:51

Type Values Removed Values Added
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
CWE CWE-129
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
First Time Linux linux Kernel
Linux
References () https://git.kernel.org/stable/c/0ee4387c5a4b57ec733c3fb4365188d5979cd9c7 - () https://git.kernel.org/stable/c/0ee4387c5a4b57ec733c3fb4365188d5979cd9c7 - Patch
References () https://git.kernel.org/stable/c/2a63c90c7a90ab2bd23deebc2814fc5b52abf6d2 - () https://git.kernel.org/stable/c/2a63c90c7a90ab2bd23deebc2814fc5b52abf6d2 - Patch
References () https://git.kernel.org/stable/c/4e70c0f5251c25885c31ee84a31f99a01f7cf50e - () https://git.kernel.org/stable/c/4e70c0f5251c25885c31ee84a31f99a01f7cf50e - Patch
References () https://git.kernel.org/stable/c/8b5ccf3d011969417be653b5a145c72dbd30472c - () https://git.kernel.org/stable/c/8b5ccf3d011969417be653b5a145c72dbd30472c - Patch
References () https://git.kernel.org/stable/c/a3b5ee22a9d3a30045191da5678ca8451ebaea30 - () https://git.kernel.org/stable/c/a3b5ee22a9d3a30045191da5678ca8451ebaea30 - Patch
References () https://git.kernel.org/stable/c/f338f99f6a04d03c802087d82a83561cbd5bdc99 - () https://git.kernel.org/stable/c/f338f99f6a04d03c802087d82a83561cbd5bdc99 - Patch

30 Sep 2024, 12:45

Type Values Removed Values Added
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/amd/display: Agregar comprobación de índice de matriz para acceso a ddc de hdcp [Por qué] Coverity informa una advertencia de OVERRUN. No comprueba si el índice de matriz es válido. [Cómo] Comprueba que msg_id sea válido y que el índice de matriz sea válido.

27 Sep 2024, 13:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-27 13:15

Updated : 2024-10-04 17:51


NVD link : CVE-2024-46804

Mitre link : CVE-2024-46804

CVE.ORG link : CVE-2024-46804


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-129

Improper Validation of Array Index