SB2024102291 - NULL pointer dereference in Linux kernel display amdgpu_dm driver

Description

This security bulletin contains information about 1 security vulnerability.

1) NULL pointer dereference (CVE-ID: CVE-2024-47683)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the is_dsc_need_re_compute() function in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_mst_types.c. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

• https://git.kernel.org/stable/c/282f0a482ee61d5e863512f3c4fcec90216c20d9
• https://git.kernel.org/stable/c/7c887efda1201110211fed8921a92a713e0b6bcd
• https://git.kernel.org/stable/c/718d83f66fb07b2cab89a1fc984613a00e3db18f
• https://git.kernel.org/stable/c/a53841b074cc196c3caaa37e1f15d6bc90943b97
• https://git.kernel.org/stable/c/70275bb960c71d313254473d38c14e7101cee5ad
• https://git.kernel.org/stable/c/6f9c39e8169384d2a5ca9bf323a0c1b81b3d0f3a
• https://git.kernel.org/stable/c/d45c64d933586d409d3f1e0ecaca4da494b1d9c6
• https://git.kernel.org/stable/c/8151a6c13111b465dbabe07c19f572f7cbd16fef
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.105
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.113
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.10.13
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.10.5
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.11
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.11.2
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.12
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.46
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.54