CVE-2024-50016

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid overflow assignment in link_dp_cts sampling_rate is an uint8_t but is assigned an unsigned int, and thus it can overflow. As a result, sampling_rate is changed to uint32_t. Similarly, LINK_QUAL_PATTERN_SET has a size of 2 bits, and it should only be assigned to a value less or equal than 4. This fixes 2 INTEGER_OVERFLOW issues reported by Coverity.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

28 Oct 2024, 17:17

Type Values Removed Values Added
References () https://git.kernel.org/stable/c/26ced9d86240868f5b41708ceee02e6ec2924498 - () https://git.kernel.org/stable/c/26ced9d86240868f5b41708ceee02e6ec2924498 - Patch
References () https://git.kernel.org/stable/c/a1495acc6234fa79b775599d3f49009afd53299f - () https://git.kernel.org/stable/c/a1495acc6234fa79b775599d3f49009afd53299f - Patch
References () https://git.kernel.org/stable/c/a15268787b79fd183dd526cc16bec9af4f4e49a1 - () https://git.kernel.org/stable/c/a15268787b79fd183dd526cc16bec9af4f4e49a1 - Patch
References () https://git.kernel.org/stable/c/adeed800bc30ef718478b28c08f79231e5980e3d - () https://git.kernel.org/stable/c/adeed800bc30ef718478b28c08f79231e5980e3d - Patch
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
CWE CWE-190
First Time Linux linux Kernel
Linux
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.5

23 Oct 2024, 15:13

Type Values Removed Values Added
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/amd/display: Evitar asignación de desbordamiento en link_dp_cts sampling_rate es un uint8_t pero se le asigna un int sin signo y, por lo tanto, puede desbordarse. Como resultado, sampling_rate se cambia a uint32_t. De manera similar, LINK_QUAL_PATTERN_SET tiene un tamaño de 2 bits y solo se debe asignar a un valor menor o igual a 4. Esto soluciona 2 problemas de INTEGER_OVERFLOW informados por Coverity.

21 Oct 2024, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-21 19:15

Updated : 2024-10-28 17:17


NVD link : CVE-2024-50016

Mitre link : CVE-2024-50016

CVE.ORG link : CVE-2024-50016


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-190

Integer Overflow or Wraparound