CVE-2024-26922

drm/amdgpu: validate the parameters of bo mapping operations more clearly

Severity Score

4.4

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate the parameters of bo mapping operations more clearly Verify the parameters of
amdgpu_vm_bo_(map/replace_map/clearing_mappings) in one common place.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/amdgpu: valide los parámetros de las operaciones de mapeo de bo con mayor claridad. Verifique los parámetros de amdgpu_vm_bo_(map/replace_map/clearing_mappings) en un lugar común.

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate the parameters of bo mapping operations more clearly Verify the parameters of amdgpu_vm_bo_(map/replace_map/clearing_mappings) in one common place.

Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a denial of service. It was discovered that the ATA over Ethernet driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code.

*Credits: N/A

CVSS Scores

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

Single

Confidentiality

None

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-02-19 CVE Reserved
2024-04-23 CVE Published
2024-12-19 CVE Updated
2025-03-18 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation

CAPEC

References (13)

URL	Tag	Source
https://git.kernel.org/stable/c/dc54d3d1744d23ed0b345fd8bc1c493b74e8df44	Vuln. Introduced
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/d4da6b084f1c5625937d49bb6722c5b4aef11b8d	2024-05-02
https://git.kernel.org/stable/c/f68039375d4d6d67303674c0ab2d06b7295c0ec9	2024-05-02
https://git.kernel.org/stable/c/1fd7db5c16028dc07b2ceec190f2e895dddb532d	2024-05-02
https://git.kernel.org/stable/c/8b12fc7b032633539acdf7864888b0ebd49e90f2	2024-04-27
https://git.kernel.org/stable/c/212e3baccdb1939606420d88f7f52d346b49a284	2024-04-27
https://git.kernel.org/stable/c/ef13eeca7c79136bc38e21eb67322c1cbd5c40ee	2024-04-27
https://git.kernel.org/stable/c/b1f04b9b1c5317f562a455384c5f7473e46bdbaa	2024-04-27
https://git.kernel.org/stable/c/6fef2d4c00b5b8561ad68dd2b68173f5c6af1e75	2024-04-17

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2024-26922	2024-11-12
https://bugzilla.redhat.com/show_bug.cgi?id=2276665	2024-11-12

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 4.19.313 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 4.19.313"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 5.4.275 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 5.4.275"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 5.10.216 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 5.10.216"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 5.15.157 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 5.15.157"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 6.1.88 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 6.1.88"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 6.6.29 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 6.6.29"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 6.8.8 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 6.8.8"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 6.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 6.9"		en		Affected