CVE-2024-26672
- Source
- https://cve.org/CVERecord?id=CVE-2024-26672
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26672.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-26672
- Downstream
- Published
- 2024-04-02T06:49:14.653Z
- Modified
- 2026-04-02T10:05:26.070607Z
- Severity
-
- 7.1 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H CVSS Calculator
- Summary
- drm/amdgpu: Fix variable 'mca_funcs' dereferenced before NULL check in 'amdgpu_mca_smu_get_mca_entry()'
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix variable 'mcafuncs' dereferenced before NULL check in 'amdgpumcasmugetmcaentry()'
Fixes the below:
drivers/gpu/drm/amd/amdgpu/amdgpumca.c:377 amdgpumcasmugetmcaentry() warn: variable dereferenced before check 'mca_funcs' (see line 368)
357 int amdgpumcasmugetmcaentry(struct amdgpudevice *adev, enum amdgpumcaerrortype type, 358 int idx, struct mcabankentry *entry) 359 { 360 const struct amdgpumcasmufuncs *mcafuncs = adev->mca.mcafuncs; 361 int count; 362 363 switch (type) { 364 case AMDGPUMCAERRORTYPEUE: 365 count = mcafuncs->maxue_count;
mca_funcs is dereferenced here.
366 break; 367 case AMDGPUMCAERRORTYPECE: 368 count = mcafuncs->maxce_count;
mca_funcs is dereferenced here.
369 break; 370 default: 371 return -EINVAL; 372 } 373 374 if (idx >= count) 375 return -EINVAL; 376 377 if (mcafuncs && mcafuncs->mcagetmca_entry) ^^^^^^^^^
Checked too late!
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26672.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/4f32504a2f85a7b40fe149436881381f48e9c0c0
- https://git.kernel.org/stable/c/7b5d58c07024516c0e81b95e98f37710cf402c53
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/26xxx/CVE-2024-26672.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-26672
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git