vulnerability
Ubuntu: (CVE-2024-26914): linux-raspi-realtime vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:L/Au:S/C:C/I:N/A:C) | 2024-04-17 | 2025-02-11 | 2025-02-19 |
Severity
6
CVSS
(AV:L/AC:L/Au:S/C:C/I:N/A:C)
Published
2024-04-17
Added
2025-02-11
Modified
2025-02-19
Description
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: fix incorrect mpc_combine array size
[why]
MAX_SURFACES is per stream, while MAX_PLANES is per asic. The
mpc_combine is an array that records all the planes per asic. Therefore
MAX_PLANES should be used as the array size. Using MAX_SURFACES causes
array overflow when there are more than 3 planes.
[how]
Use the MAX_PLANES for the mpc_combine array size.
Solution
ubuntu-upgrade-linux-raspi-realtime
References
- CVE-2024-26914
- https://attackerkb.com/topics/CVE-2024-26914
- URL-https://git.kernel.org/linus/39079fe8e660851abbafa90cd55cbf029210661f
- URL-https://git.kernel.org/stable/c/0bd8ef618a42d7e6ea3f701065264e15678025e3
- URL-https://git.kernel.org/stable/c/39079fe8e660851abbafa90cd55cbf029210661f
- URL-https://www.cve.org/CVERecord?id=CVE-2024-26914
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.