CVE-2024-26648

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-26648
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26648.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-26648
Downstream
Published
2024-03-26T17:50:01Z
Modified
2025-10-15T08:05:48.439622Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
drm/amd/display: Fix variable deferencing before NULL check in edp_setup_replay()
Details

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Fix variable deferencing before NULL check in edpsetupreplay()

In edpsetupreplay(), 'struct dc *dc' & 'struct dmub_replay *replay' was dereferenced before the pointer 'link' & 'replay' NULL check.

Fixes the below: drivers/gpu/drm/amd/amdgpu/../display/dc/link/protocols/linkedppanelcontrol.c:947 edpsetup_replay() warn: variable dereferenced before check 'link' (see line 933)

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
c7ddc0a800bc9f681a18c3bdd9f06b61adfabc11
Fixed
22ae604aea14756954e1c00ae653e34d2afd2935
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
c7ddc0a800bc9f681a18c3bdd9f06b61adfabc11
Fixed
c02d257c654191ecda1dc1af6875d527e85310e7
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
c7ddc0a800bc9f681a18c3bdd9f06b61adfabc11
Fixed
7073934f5d73f8b53308963cee36f0d389ea857c

Affected versions

v6.*

v6.5
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.2
v6.6.3
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.7.1
v6.7.2

Database specific 

{
    "vanir_signatures": [
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/gpu/drm/amd/display/dc/link/protocols/link_edp_panel_control.c",
                "function": "edp_setup_replay"
            },
            "id": "CVE-2024-26648-855f4370",
            "digest": {
                "length": 1655.0,
                "function_hash": "173742129975487353057721811685806519362"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@22ae604aea14756954e1c00ae653e34d2afd2935"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/gpu/drm/amd/display/dc/link/protocols/link_edp_panel_control.c",
                "function": "edp_setup_replay"
            },
            "id": "CVE-2024-26648-b9ab9a72",
            "digest": {
                "length": 1655.0,
                "function_hash": "173742129975487353057721811685806519362"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7073934f5d73f8b53308963cee36f0d389ea857c"
        },
        {
            "deprecated": false,
            "signature_type": "Function",
            "target": {
                "file": "drivers/gpu/drm/amd/display/dc/link/protocols/link_edp_panel_control.c",
                "function": "edp_setup_replay"
            },
            "id": "CVE-2024-26648-c2459727",
            "digest": {
                "length": 1655.0,
                "function_hash": "173742129975487353057721811685806519362"
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c02d257c654191ecda1dc1af6875d527e85310e7"
        },
        {
            "deprecated": false,
            "signature_type": "Line",
            "target": {
                "file": "drivers/gpu/drm/amd/display/dc/link/protocols/link_edp_panel_control.c"
            },
            "id": "CVE-2024-26648-c6d1830e",
            "digest": {
                "line_hashes": [
                    "88590054954845699264626517734046333408",
                    "65529309953949192836803675716732839882",
                    "20497859483784399005224322869647107006",
                    "112331066206366555872396060569881819739",
                    "199142427672901109936425227687034257439",
                    "155455377318575619608117832872730420994",
                    "316430854128779874005094213657458889335",
                    "255028868131045894741078904075685686036",
                    "276084950039492052982741359707902116753",
                    "222840612251812707353634551140885428268",
                    "272632943189695714205329706240324959251",
                    "212860207218305577983529529975061241461",
                    "98734020150035676671502326374285365276"
                ],
                "threshold": 0.9
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c02d257c654191ecda1dc1af6875d527e85310e7"
        },
        {
            "deprecated": false,
            "signature_type": "Line",
            "target": {
                "file": "drivers/gpu/drm/amd/display/dc/link/protocols/link_edp_panel_control.c"
            },
            "id": "CVE-2024-26648-e3b5db76",
            "digest": {
                "line_hashes": [
                    "88590054954845699264626517734046333408",
                    "65529309953949192836803675716732839882",
                    "20497859483784399005224322869647107006",
                    "112331066206366555872396060569881819739",
                    "199142427672901109936425227687034257439",
                    "155455377318575619608117832872730420994",
                    "316430854128779874005094213657458889335",
                    "255028868131045894741078904075685686036",
                    "276084950039492052982741359707902116753",
                    "222840612251812707353634551140885428268",
                    "272632943189695714205329706240324959251",
                    "212860207218305577983529529975061241461",
                    "98734020150035676671502326374285365276"
                ],
                "threshold": 0.9
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7073934f5d73f8b53308963cee36f0d389ea857c"
        },
        {
            "deprecated": false,
            "signature_type": "Line",
            "target": {
                "file": "drivers/gpu/drm/amd/display/dc/link/protocols/link_edp_panel_control.c"
            },
            "id": "CVE-2024-26648-f714cce0",
            "digest": {
                "line_hashes": [
                    "88590054954845699264626517734046333408",
                    "65529309953949192836803675716732839882",
                    "20497859483784399005224322869647107006",
                    "112331066206366555872396060569881819739",
                    "199142427672901109936425227687034257439",
                    "155455377318575619608117832872730420994",
                    "316430854128779874005094213657458889335",
                    "255028868131045894741078904075685686036",
                    "276084950039492052982741359707902116753",
                    "222840612251812707353634551140885428268",
                    "272632943189695714205329706240324959251",
                    "212860207218305577983529529975061241461",
                    "98734020150035676671502326374285365276"
                ],
                "threshold": 0.9
            },
            "signature_version": "v1",
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@22ae604aea14756954e1c00ae653e34d2afd2935"
        }
    ]
}

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.6.0
Fixed
6.6.15
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.7.3