CVE-2024-36914
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
30/05/2024
Last modified:
03/11/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
drm/amd/display: Skip on writeback when it&#39;s not applicable<br />
<br />
[WHY]<br />
dynamic memory safety error detector (KASAN) catches and generates error<br />
messages "BUG: KASAN: slab-out-of-bounds" as writeback connector does not<br />
support certain features which are not initialized.<br />
<br />
[HOW]<br />
Skip them when connector type is DRM_MODE_CONNECTOR_WRITEBACK.
Impact
Base Score 3.x
7.80
Severity 3.x
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.15 (including) | 6.1.116 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.2 (including) | 6.6.31 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.7 (including) | 6.8.10 (excluding) |
| cpe:2.3:o:linux:linux_kernel:6.9:rc1:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.9:rc2:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:6.9:rc3:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/87de0a741ef6d93fcb99983138a0d89a546a043c
- https://git.kernel.org/stable/c/951a498fa993c5501994ec2df97c9297b02488c7
- https://git.kernel.org/stable/c/e9baa7110e9f3756bd5a812af376c288d9be894d
- https://git.kernel.org/stable/c/ecedd99a9369fb5cde601ae9abd58bca2739f1ae
- https://git.kernel.org/stable/c/951a498fa993c5501994ec2df97c9297b02488c7
- https://git.kernel.org/stable/c/e9baa7110e9f3756bd5a812af376c288d9be894d
- https://git.kernel.org/stable/c/ecedd99a9369fb5cde601ae9abd58bca2739f1ae
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html