CVE-2024-53200

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 27, 2024
Updated: Jan 8, 2025
CWE ID 476

Summary

CVE-2024-53200: A null pointer dereference vulnerability has been identified and addressed in the Linux kernel's drm/amd/display module. Specifically, in the function hwss_setup_dpp(), a null check for pipe_ctx->plane_state was missing. This oversight could lead to a null pointer dereference if pipe_ctx->plane_state was null. To mitigate this risk, the latest commit adds a null check to ensure pipe_ctx->plane_state is valid before being accessed. This patch prevents the occurrence of a potential kernel crash or exploitation.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share