vulnerability
Ubuntu: (CVE-2024-26672): linux-raspi-realtime vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:L/Au:S/C:C/I:N/A:C) | Apr 2, 2024 | Feb 11, 2025 | Apr 16, 2026 |
Description
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix variable 'mca_funcs' dereferenced before NULL check in 'amdgpu_mca_smu_get_mca_entry()'
Fixes the below:
drivers/gpu/drm/amd/amdgpu/amdgpu_mca.c:377 amdgpu_mca_smu_get_mca_entry() warn: variable dereferenced before check 'mca_funcs' (see line 368)
357 int amdgpu_mca_smu_get_mca_entry(struct amdgpu_device *adev,
enum amdgpu_mca_error_type type,
358 int idx, struct mca_bank_entry *entry)
359 {
360 const struct amdgpu_mca_smu_funcs *mca_funcs =
adev->mca.mca_funcs;
361 int count;
362
363 switch (type) {
364 case AMDGPU_MCA_ERROR_TYPE_UE:
365 count = mca_funcs->max_ue_count;
mca_funcs is dereferenced here.
366 break;
367 case AMDGPU_MCA_ERROR_TYPE_CE:
368 count = mca_funcs->max_ce_count;
mca_funcs is dereferenced here.
369 break;
370 default:
371 return -EINVAL;
372 }
373
374 if (idx >= count)
375 return -EINVAL;
376
377 if (mca_funcs && mca_funcs->mca_get_mca_entry)
^^^^^^^^^
Checked too late!
Solution
References
- CVE-2024-26672
- https://attackerkb.com/topics/CVE-2024-26672
- CWE-476
- EUVD-EUVD-2024-23934
- https://euvd.enisa.europa.eu/vulnerability/EUVD-2024-23934
- https://git.kernel.org/linus/4f32504a2f85a7b40fe149436881381f48e9c0c0
- https://git.kernel.org/stable/c/4f32504a2f85a7b40fe149436881381f48e9c0c0
- https://git.kernel.org/stable/c/7b5d58c07024516c0e81b95e98f37710cf402c53
- https://www.cve.org/CVERecord?id=CVE-2024-26672
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.