CVE-2024-46722

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix mc_data out-of-bounds read warning Clear warning that read mc_data[i-1] may out-of-bounds.

CVSS v3 7.1 HIGH

7.1^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.2

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/2097edede72ec5bb3869cf0205337d392fb2a553	Patch
https://git.kernel.org/stable/c/310b9d8363b88e818afec97ca7652bd7fe3d0650	Patch
https://git.kernel.org/stable/c/345bd3ad387f9e121aaad9c95957b80895e2f2ec	Patch
https://git.kernel.org/stable/c/51dfc0a4d609fe700750a62f41447f01b8c9ea50	Patch
https://git.kernel.org/stable/c/578ae965e8b90cd09edeb0252b50fa0503ea35c5	Patch
https://git.kernel.org/stable/c/5fa4df25ecfc7b6c9006f5b871c46cfe25ea8826	Patch
https://git.kernel.org/stable/c/b862a0bc5356197ed159fed7b1c647e77bc9f653	Patch
https://git.kernel.org/stable/c/d0a43bf367ed640e527e8ef3d53aac1e71f80114	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

History

20 Sep 2024, 18:23

Type	Values Removed	Values Added
References	~~() https://git.kernel.org/stable/c/2097edede72ec5bb3869cf0205337d392fb2a553 -~~	() https://git.kernel.org/stable/c/2097edede72ec5bb3869cf0205337d392fb2a553 - Patch
References	~~() https://git.kernel.org/stable/c/310b9d8363b88e818afec97ca7652bd7fe3d0650 -~~	() https://git.kernel.org/stable/c/310b9d8363b88e818afec97ca7652bd7fe3d0650 - Patch
References	~~() https://git.kernel.org/stable/c/345bd3ad387f9e121aaad9c95957b80895e2f2ec -~~	() https://git.kernel.org/stable/c/345bd3ad387f9e121aaad9c95957b80895e2f2ec - Patch
References	~~() https://git.kernel.org/stable/c/51dfc0a4d609fe700750a62f41447f01b8c9ea50 -~~	() https://git.kernel.org/stable/c/51dfc0a4d609fe700750a62f41447f01b8c9ea50 - Patch
References	~~() https://git.kernel.org/stable/c/578ae965e8b90cd09edeb0252b50fa0503ea35c5 -~~	() https://git.kernel.org/stable/c/578ae965e8b90cd09edeb0252b50fa0503ea35c5 - Patch
References	~~() https://git.kernel.org/stable/c/5fa4df25ecfc7b6c9006f5b871c46cfe25ea8826 -~~	() https://git.kernel.org/stable/c/5fa4df25ecfc7b6c9006f5b871c46cfe25ea8826 - Patch
References	~~() https://git.kernel.org/stable/c/b862a0bc5356197ed159fed7b1c647e77bc9f653 -~~	() https://git.kernel.org/stable/c/b862a0bc5356197ed159fed7b1c647e77bc9f653 - Patch
References	~~() https://git.kernel.org/stable/c/d0a43bf367ed640e527e8ef3d53aac1e71f80114 -~~	() https://git.kernel.org/stable/c/d0a43bf367ed640e527e8ef3d53aac1e71f80114 - Patch
CPE		cpe:2.3:o:linux:linux_kernel::::::::
CWE		CWE-125
First Time		Linux linux Kernel Linux
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.1

20 Sep 2024, 12:30

Type	Values Removed	Values Added
Summary		(es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/amdgpu: se corrige la advertencia de lectura fuera de los límites de mc_data. Advertencia clara de que la lectura mc_data[i-1] puede estar fuera de los límites.

18 Sep 2024, 07:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-09-18 07:15

Updated : 2024-09-20 18:23

NVD link : CVE-2024-46722

Mitre link : CVE-2024-46722

CVE.ORG link : CVE-2024-46722

JSON object : View

Products Affected

linux

linux_kernel

CWE

CWE-125

Out-of-bounds Read

7.1 /10