[SRU][N/F][PATCH 0/1] CVE-2024-46724
Bethany Jamison
bethany.jamison at canonical.com
Wed Oct 16 17:08:34 UTC 2024
[Impact]
In drm/amdgpu there's an out-of-bounds read of `df_v1_7_channel_number'.
To avoid the array out-of-bounds read error check the 'fb_chennel_number'
range before reading.
[Fix]
Noble: Clean cherry-pick from linux-6.10.y
Jammy: pending (5.15.0-125.135)
Focal: Backported from linux-5.10.y -- kept 'df_funcs' instead
of using 'df.funcs' and adding commit
bdf84a80e0ce5f60f4f41a27b4cf74bcfabcea56
Bionic: not-affected
Xenial: not-affected
Trusty: not-affected
[Test Case]
Compile and boot tested.
[Where problems could occur]
This fix affects those who use the AMD GPU, an issue with this fix
would be visible to the user via unexpected system behavior or a system
crash.
Ma Jun (1):
drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number
drivers/gpu/drm/amd/amdgpu/df_v1_7.c | 2 ++
1 file changed, 2 insertions(+)
--
2.34.1
More information about the kernel-team
mailing list