CVE-2024-26938

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-26938

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26938.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-26938

Downstream

BELL-CVE-2024-26938

DEBIAN-CVE-2024-26938

RHSA-2024:9315

SUSE-SU-2024:2008-1

SUSE-SU-2024:2019-1

SUSE-SU-2024:2135-1

SUSE-SU-2024:2190-1

SUSE-SU-2024:2203-1

SUSE-SU-2024:2973-1

UBUNTU-CVE-2024-26938

USN-6816-1

USN-6817-1

USN-6817-2

USN-6817-3

USN-6878-1

Related

Published

2024-05-01T06:15:09Z

Modified

2025-09-18T14:15:37Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/i915/bios: Tolerate devdata==NULL in intelbiosencodersupportsdpdualmode()

If we have no VBT, or the VBT didn't declare the encoder in question, we won't have the 'devdata' for the encoder. Instead of oopsing just bail early.

We won't be able to tell whether the port is DP++ or not, but so be it.

(cherry picked from commit 26410896206342c8a80d2b027923e9ee7d33b733)

References

Affected packages