摘要:
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: fix incorrect mpc_combine array size
[why]
MAX_SURFACES is per stream, while MAX_PLANES is per asic. The
mpc_combine is an array that records all the planes per asic. Therefore
MAX_PLANES should be used as the array size. Using MAX_SURFACES causes
array overflow when there are more than 3 planes.
[how]
Use the MAX_PLANES for the mpc_combine array size.
安全等级: Low
公告ID: KylinSec-SA-2024-2026
发布日期: 2024年5月27日
关联CVE: CVE-2024-26914
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: fix incorrect mpc_combine array size
[why]
MAX_SURFACES is per stream, while MAX_PLANES is per asic. The
mpc_combine is an array that records all the planes per asic. Therefore
MAX_PLANES should be used as the array size. Using MAX_SURFACES causes
array overflow when there are more than 3 planes.
[how]
Use the MAX_PLANES for the mpc_combine array size.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2024-26914 | KY3.4-4A | kernel | Unaffected |
| CVE-2024-26914 | KY3.4-5 | kernel | Unaffected |
| CVE-2024-26914 | KY3.5.1 | kernel | Unaffected |
| CVE-2024-26914 | V6 | kernel | Unaffected |
