AZL-55294

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-55294.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-55294

Upstream

CVE-2024-53201

Published

2024-12-27T14:15:27Z

Modified

2026-04-01T05:18:34.493589Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

CVE-2024-53201 affecting package kernel 6.6.126.1-1

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Fix null check for pipectx->planestate in dcn20programpipe

This commit addresses a null pointer dereference issue in dcn20programpipe(). Previously, commit 8e4ed3cf1642 ("drm/amd/display: Add null check for pipectx->planestate in dcn20programpipe") partially fixed the null pointer dereference issue. However, in dcn20updatedchubpdpp(), the variable pipectx is passed in, and planestate is accessed again through pipectx. Multiple if statements directly call attributes of plane_state, leading to potential null pointer dereference issues. This patch adds necessary null checks to ensure stability.

References

https://nvd.nist.gov/vuln/detail/CVE-2024-53201

Affected packages

Azure Linux:3 / kernel

Package

Name: kernel
Purl: pkg:rpm/azure-linux/kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

6.6.126.1-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-55294.json"