Home

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Increase array size of dummy_boolean [WHY] dml2_core_shared_mode_support and dml_core_mode_support access the third element of dummy_boolean, i.e. hw_debug5 = &s->dummy_boolean[2], when dummy_boolean has size of 2. Any assignment to hw_debug5 causes an OVERRUN. [HOW] Increase dummy_boolean's array size to 3. This fixes 2 OVERRUN issues reported by Coverity.

PUBLISHED Reserved 2024-10-21 | Published 2024-10-21 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

70839da6360500a82e4d5f78499284474cbed7c1 (git) before e9e48b7bb9cf3b78f0305ef0144aaf61da0a83d8
affected

70839da6360500a82e4d5f78499284474cbed7c1 (git) before 6d64d39486197083497a01b39e23f2f8474b35d3
affected

Default status
affected

6.11
affected

Any version before 6.11
unaffected

6.11.3 (semver)
unaffected

6.12 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/e9e48b7bb9cf3b78f0305ef0144aaf61da0a83d8

git.kernel.org/...c/6d64d39486197083497a01b39e23f2f8474b35d3

cve.org (CVE-2024-49971)

nvd.nist.gov (CVE-2024-49971)