We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)
Ok

THREATINT
PUBLISHED

CVE-2024-27040

drm/amd/display: Add 'replay' NULL check in 'edp_set_replay_allow_active()'

Reserved:2024-02-19
Published:2024-05-01
Updated:2024-05-13

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add 'replay' NULL check in 'edp_set_replay_allow_active()' In the first if statement, we're checking if 'replay' is NULL. But in the second if statement, we're not checking if 'replay' is NULL again before calling replay->funcs->replay_set_power_opt(). if (replay == NULL && force_static) return false; ... if (link->replay_settings.replay_feature_enabled && replay->funcs->replay_set_power_opt) { replay->funcs->replay_set_power_opt(replay, *power_opts, panel_inst); link->replay_settings.replay_power_opt_active = *power_opts; } If 'replay' is NULL, this will cause a null pointer dereference. Fixes the below found by smatch: drivers/gpu/drm/amd/amdgpu/../display/dc/link/protocols/link_edp_panel_control.c:895 edp_set_replay_allow_active() error: we previously assumed 'replay' could be null (see line 887)

Product status

Default status
unaffected

c7ddc0a800bc before f610c46771ef
affected

c7ddc0a800bc before e7cadd5d3a8f
affected

c7ddc0a800bc before d0e94f4807ff
affected

c7ddc0a800bc before f6aed043ee5d
affected

Default status
affected

6.6
affected

Any version before 6.6
unaffected

6.6.23
unaffected

6.7.11
unaffected

6.8.2
unaffected

6.9
unaffected

References

https://git.kernel.org/stable/c/f610c46771ef1047e46d61807aa7c69cd29e63d8

https://git.kernel.org/stable/c/e7cadd5d3a8ffe334d0229ba9eda4290138d56e7

https://git.kernel.org/stable/c/d0e94f4807ff0df66cf447d6b4bbb8ac830e99c3

https://git.kernel.org/stable/c/f6aed043ee5d75b3d1bfc452b1a9584b63c8f76b

cve.org CVE-2024-27040

nvd.nist.gov CVE-2024-27040

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-27040