CVE-2024-36960
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-36960
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-36960.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-36960
- Downstream
- Related
- Published
- 2024-06-03T07:49:58.951Z
- Modified
- 2025-11-27T19:35:14.907730Z
- Summary
- drm/vmwgfx: Fix invalid reads in fence signaled events
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
drm/vmwgfx: Fix invalid reads in fence signaled events
Correctly set the length of the drm_event to the size of the structure that's actually used.
The length of the drmevent was set to the parent structure instead of to the drmvmweventfence which is supposed to be read. drm_read uses the length parameter to copy the event to the user space thus resuling in oob reads.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/blob/ee626f5d79d5817bb21d6f048dc0da4c4e383443/cves/2024/36xxx/CVE-2024-36960.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/0dbfc73670b357456196130551e586345ca48e1b
- https://git.kernel.org/stable/c/2f527e3efd37c7c5e85e8aa86308856b619fa59f
- https://git.kernel.org/stable/c/3cd682357c6167f636aec8ac0efaa8ba61144d36
- https://git.kernel.org/stable/c/7b5fd3af4a250dd0a2a558e07b43478748eb5d22
- https://git.kernel.org/stable/c/a37ef7613c00f2d72c8fc08bd83fb6cc76926c8c
- https://git.kernel.org/stable/c/b7bab33c4623c66e3398d5253870d4e88c52dfc0
- https://git.kernel.org/stable/c/cef0962f2d3e5fd0660c8efb72321083a1b531a9
- https://git.kernel.org/stable/c/deab66596dfad14f1c54eeefdb72428340d72a77
- https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8b7de6aa84682a3396544fd88cd457f95484573aFixed2f527e3efd37c7c5e85e8aa86308856b619fa59f
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8b7de6aa84682a3396544fd88cd457f95484573aFixedcef0962f2d3e5fd0660c8efb72321083a1b531a9
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8b7de6aa84682a3396544fd88cd457f95484573aFixed3cd682357c6167f636aec8ac0efaa8ba61144d36
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8b7de6aa84682a3396544fd88cd457f95484573aFixedb7bab33c4623c66e3398d5253870d4e88c52dfc0
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8b7de6aa84682a3396544fd88cd457f95484573aFixed0dbfc73670b357456196130551e586345ca48e1b
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8b7de6aa84682a3396544fd88cd457f95484573aFixed7b5fd3af4a250dd0a2a558e07b43478748eb5d22
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8b7de6aa84682a3396544fd88cd457f95484573aFixeddeab66596dfad14f1c54eeefdb72428340d72a77
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8b7de6aa84682a3396544fd88cd457f95484573aFixeda37ef7613c00f2d72c8fc08bd83fb6cc76926c8c
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced3.4.0Fixed4.19.314
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.276
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.217
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.159
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.91
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.6.31
- Type
- ECOSYSTEM
- Events
-
Introduced6.7.0Fixed6.8.10