In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Check numvalidsets before accessing readerwmsets[]
[WHY & HOW] numvalidsets needs to be checked to avoid a negative index when accessing readerwmsets[numvalidsets - 1].
This fixes an OVERRUN issue reported by Coverity.
{ "vanir_signatures": [ { "signature_version": "v1", "signature_type": "Function", "target": { "file": "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn21/rn_clk_mgr.c", "function": "build_watermark_ranges" }, "deprecated": false, "digest": { "length": 2237.0, "function_hash": "320289876023031107171960898319592621602" }, "id": "CVE-2024-46815-09f561f6", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@21f9cb44f8c60bf6c26487d428b1a09ad3e8aebf" }, { "signature_version": "v1", "signature_type": "Function", "target": { "file": "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn21/rn_clk_mgr.c", "function": "build_watermark_ranges" }, "deprecated": false, "digest": { "length": 2237.0, "function_hash": "320289876023031107171960898319592621602" }, "id": "CVE-2024-46815-3bcf5290", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7c47dd2e92341f2989ab73dbed07f8894593ad7b" }, { "signature_version": "v1", "signature_type": "Line", "target": { "file": "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn21/rn_clk_mgr.c" }, "deprecated": false, "digest": { "line_hashes": [ "315736247074949207622437082944662436331", "278149432808648497894418857208697177219", "113760614824655170325008114397894548064", "300119934423529588809003480940772316388" ], "threshold": 0.9 }, "id": "CVE-2024-46815-6b00a604", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a72d4996409569027b4609414a14a87679b12267" }, { "signature_version": "v1", "signature_type": "Line", "target": { "file": "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn21/rn_clk_mgr.c" }, "deprecated": false, "digest": { "line_hashes": [ "315736247074949207622437082944662436331", "278149432808648497894418857208697177219", "113760614824655170325008114397894548064", "300119934423529588809003480940772316388" ], "threshold": 0.9 }, "id": "CVE-2024-46815-7460207d", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6a4a08e45e614cfa7a56498cdfaeb7fae2f07fa0" }, { "signature_version": "v1", "signature_type": "Function", "target": { "file": "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn21/rn_clk_mgr.c", "function": "build_watermark_ranges" }, "deprecated": false, "digest": { "length": 2237.0, "function_hash": "320289876023031107171960898319592621602" }, "id": "CVE-2024-46815-76d7d941", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6a4a08e45e614cfa7a56498cdfaeb7fae2f07fa0" }, { "signature_version": "v1", "signature_type": "Function", "target": { "file": "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn21/rn_clk_mgr.c", "function": "build_watermark_ranges" }, "deprecated": false, "digest": { "length": 2227.0, "function_hash": "325812385106057693256069984552485190045" }, "id": "CVE-2024-46815-91d32c0a", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a72d4996409569027b4609414a14a87679b12267" }, { "signature_version": "v1", "signature_type": "Line", "target": { "file": "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn21/rn_clk_mgr.c" }, "deprecated": false, "digest": { "line_hashes": [ "315736247074949207622437082944662436331", "278149432808648497894418857208697177219", "113760614824655170325008114397894548064", "300119934423529588809003480940772316388" ], "threshold": 0.9 }, "id": "CVE-2024-46815-d3ba99a4", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7c47dd2e92341f2989ab73dbed07f8894593ad7b" }, { "signature_version": "v1", "signature_type": "Line", "target": { "file": "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn21/rn_clk_mgr.c" }, "deprecated": false, "digest": { "line_hashes": [ "315736247074949207622437082944662436331", "278149432808648497894418857208697177219", "113760614824655170325008114397894548064", "300119934423529588809003480940772316388" ], "threshold": 0.9 }, "id": "CVE-2024-46815-fddc4162", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@21f9cb44f8c60bf6c26487d428b1a09ad3e8aebf" } ] }