CVE-2024-49984

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-49984
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-49984.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-49984
Downstream
Related
Published
2024-10-21T18:02:29.151Z
Modified
2025-11-20T06:35:31.392776Z
Summary
drm/v3d: Prevent out of bounds access in performance query extensions
Details

In the Linux kernel, the following vulnerability has been resolved:

drm/v3d: Prevent out of bounds access in performance query extensions

Check that the number of perfmons userspace is passing in the copy and reset extensions is not greater than the internal kernel storage where the ids will be copied into.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
bae7cb5d68001a8d4ceec5964dda74bb9aab7220
Fixed
3e50d72abe50204c7b19784a66e86da29dde32c2
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
bae7cb5d68001a8d4ceec5964dda74bb9aab7220
Fixed
d9536f16be3970c170571efa707c13cd089c774e
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
bae7cb5d68001a8d4ceec5964dda74bb9aab7220
Fixed
f32b5128d2c440368b5bf3a7a356823e235caabb

Affected versions

v6.*

v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.10.1
v6.10.10
v6.10.11
v6.10.12
v6.10.13
v6.10.2
v6.10.3
v6.10.4
v6.10.5
v6.10.6
v6.10.7
v6.10.8
v6.10.9
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.11.1
v6.11.2
v6.7
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7

Database specific

vanir_signatures

[
    {
        "id": "CVE-2024-49984-112c40c1",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "238769717887797582718744476308755349813",
                "316228063113362620356052194783590074780",
                "24044388145509944449850776630753049509",
                "271177250840994078392195264660150137061",
                "298711437812733680511410640911954922969",
                "278665285091473838320149817747360436354"
            ]
        },
        "deprecated": false,
        "signature_type": "Line",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e50d72abe50204c7b19784a66e86da29dde32c2",
        "signature_version": "v1"
    },
    {
        "id": "CVE-2024-49984-19c089d5",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_copy_performance_query_params"
        },
        "digest": {
            "length": 1988.0,
            "function_hash": "199513588946414417828464589699956306886"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e50d72abe50204c7b19784a66e86da29dde32c2",
        "signature_version": "v1"
    },
    {
        "id": "CVE-2024-49984-3c6b7504",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "238769717887797582718744476308755349813",
                "316228063113362620356052194783590074780",
                "24044388145509944449850776630753049509",
                "271177250840994078392195264660150137061",
                "298711437812733680511410640911954922969",
                "278665285091473838320149817747360436354"
            ]
        },
        "deprecated": false,
        "signature_type": "Line",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d9536f16be3970c170571efa707c13cd089c774e",
        "signature_version": "v1"
    },
    {
        "id": "CVE-2024-49984-624a0645",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "149119277863802742642149609732920629734",
                "295939836780114132374160841087794290871",
                "104832276325915968449358632625674595112",
                "44626423150298280918977905918959399797",
                "31624559826911921779800436369606389654",
                "278665285091473838320149817747360436354"
            ]
        },
        "deprecated": false,
        "signature_type": "Line",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f32b5128d2c440368b5bf3a7a356823e235caabb",
        "signature_version": "v1"
    },
    {
        "id": "CVE-2024-49984-7df53942",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_reset_performance_params"
        },
        "digest": {
            "length": 1668.0,
            "function_hash": "56769716113641101778392046662939789713"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d9536f16be3970c170571efa707c13cd089c774e",
        "signature_version": "v1"
    },
    {
        "id": "CVE-2024-49984-86dca935",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_copy_performance_query_params"
        },
        "digest": {
            "length": 1988.0,
            "function_hash": "199513588946414417828464589699956306886"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d9536f16be3970c170571efa707c13cd089c774e",
        "signature_version": "v1"
    },
    {
        "id": "CVE-2024-49984-9cf02d83",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_reset_performance_params"
        },
        "digest": {
            "length": 1532.0,
            "function_hash": "301218209402581814630390515218607966086"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f32b5128d2c440368b5bf3a7a356823e235caabb",
        "signature_version": "v1"
    },
    {
        "id": "CVE-2024-49984-bb0c92ab",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_copy_performance_query_params"
        },
        "digest": {
            "length": 1852.0,
            "function_hash": "218593796007710961751455959419156824144"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f32b5128d2c440368b5bf3a7a356823e235caabb",
        "signature_version": "v1"
    },
    {
        "id": "CVE-2024-49984-bc00744f",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_reset_performance_params"
        },
        "digest": {
            "length": 1668.0,
            "function_hash": "56769716113641101778392046662939789713"
        },
        "deprecated": false,
        "signature_type": "Function",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3e50d72abe50204c7b19784a66e86da29dde32c2",
        "signature_version": "v1"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.8.0
Fixed
6.10.14
Type
ECOSYSTEM
Events
Introduced
6.11.0
Fixed
6.11.3