CVE-2024-53201

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 27, 2024
Updated: Jan 8, 2025
CWE ID 476

Summary

CVE-2024-53201 is a vulnerability affecting the Linux kernel that has been addressed. In the drm/amd/display driver, a null pointer dereference issue was discovered in the function dcn20_program_pipe(). This issue occurred due to a missing null check for pipe_ctx->plane_state in that function. A previous commit had partly resolved this issue, but pipe_ctx was still being passed to other functions, and plane_state was being accessed directly. As a result, null pointer dereferences could still occur in multiple if statements that called attributes of plane_state. The patch fixes this problem by adding necessary null checks to ensure stability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share