CVE-2024-49912

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-49912

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-49912.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-49912

Downstream

BELL-CVE-2024-49912

DEBIAN-CVE-2024-49912

DLA-4008-1

OESA-2024-2367

SUSE-SU-2024:3983-1

SUSE-SU-2024:3985-1

SUSE-SU-2024:4314-1

SUSE-SU-2024:4316-1

SUSE-SU-2024:4318-1

SUSE-SU-2024:4364-1

SUSE-SU-2024:4387-1

UBUNTU-CVE-2024-49912

USN-7170-1

USN-7301-1

USN-7303-1

USN-7303-2

USN-7303-3

USN-7304-1

USN-7311-1

USN-7384-1

USN-7384-2

USN-7385-1

USN-7386-1

USN-7403-1

USN-7468-1

openSUSE-SU-2024:14500-1

openSUSE-SU-2025:14705-1

Related

Published

2024-10-21T18:15:13Z

Modified

2025-08-09T19:01:28Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Handle null 'streamstatus' in 'planeschangedforexisting_stream'

This commit adds a null check for 'streamstatus' in the function 'planeschangedforexistingstream'. Previously, the code assumed 'streamstatus' could be null, but did not handle the case where it was actually null. This could lead to a null pointer dereference.

Reported by smatch: drivers/gpu/drm/amd/amdgpu/../display/dc/core/dcresource.c:3784 planeschangedforexistingstream() error: we previously assumed 'streamstatus' could be null (see line 3774)

References

Affected packages