CVE-2024-46803

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-46803
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-46803.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-46803
Downstream
Related
Published
2024-09-27T12:35:49Z
Modified
2025-10-17T12:18:33.959780Z
Summary
drm/amdkfd: Check debug trap enable before write dbg_ev_file
Details

In the Linux kernel, the following vulnerability has been resolved:

drm/amdkfd: Check debug trap enable before write dbgevfile

In interrupt context, write dbgevfile will be run by work queue. It will cause write dbgevfile execution after debugtrapdisable, which will cause NULL pointer access. v2: cancel work "debugeventworkarea" before set dbgevfile as NULL.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0ab2d7532b05a3e7c06fd3b0c8bd6b46c1dfb508
Fixed
e6ea3b8fe398915338147fe54dd2db8155fdafd8
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0ab2d7532b05a3e7c06fd3b0c8bd6b46c1dfb508
Fixed
820dcbd38a77bd5fdc4236d521c1c122841227d0
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0ab2d7532b05a3e7c06fd3b0c8bd6b46c1dfb508
Fixed
547033b593063eb85bfdf9b25a5f1b8fd1911be2

Affected versions

v6.*

v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.10.1
v6.10.2
v6.10.3
v6.10.4
v6.10.5
v6.10.6
v6.10.7
v6.10.8
v6.3
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.44
v6.6.45
v6.6.46
v6.6.47
v6.6.48
v6.6.49
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7

Database specific

vanir_signatures

[
    {
        "signature_type": "Line",
        "id": "CVE-2024-46803-0b8fe4bd",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e6ea3b8fe398915338147fe54dd2db8155fdafd8",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/amd/amdkfd/kfd_debug.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "108126075567411971182530597356980860789",
                "8546026351265988186730630650354665546",
                "337839054028142393606462359561433297466",
                "267241437712741229640969651453708583433",
                "273768177777564349104672820843298550960",
                "149694891575143745845267263435967303013",
                "178670479159308234523480122189668295464"
            ]
        },
        "deprecated": false
    },
    {
        "signature_type": "Function",
        "id": "CVE-2024-46803-20c810fb",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@547033b593063eb85bfdf9b25a5f1b8fd1911be2",
        "signature_version": "v1",
        "target": {
            "function": "kfd_dbg_trap_disable",
            "file": "drivers/gpu/drm/amd/amdkfd/kfd_debug.c"
        },
        "digest": {
            "function_hash": "233284410880765740494605863536024543434",
            "length": 643.0
        },
        "deprecated": false
    },
    {
        "signature_type": "Function",
        "id": "CVE-2024-46803-28d6168c",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@820dcbd38a77bd5fdc4236d521c1c122841227d0",
        "signature_version": "v1",
        "target": {
            "function": "kfd_dbg_trap_disable",
            "file": "drivers/gpu/drm/amd/amdkfd/kfd_debug.c"
        },
        "digest": {
            "function_hash": "233284410880765740494605863536024543434",
            "length": 643.0
        },
        "deprecated": false
    },
    {
        "signature_type": "Function",
        "id": "CVE-2024-46803-46ebb239",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@820dcbd38a77bd5fdc4236d521c1c122841227d0",
        "signature_version": "v1",
        "target": {
            "function": "debug_event_write_work_handler",
            "file": "drivers/gpu/drm/amd/amdkfd/kfd_debug.c"
        },
        "digest": {
            "function_hash": "335269254666838245990963583890121570407",
            "length": 213.0
        },
        "deprecated": false
    },
    {
        "signature_type": "Line",
        "id": "CVE-2024-46803-50faba7d",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@820dcbd38a77bd5fdc4236d521c1c122841227d0",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/amd/amdkfd/kfd_debug.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "108126075567411971182530597356980860789",
                "8546026351265988186730630650354665546",
                "337839054028142393606462359561433297466",
                "267241437712741229640969651453708583433",
                "273768177777564349104672820843298550960",
                "149694891575143745845267263435967303013",
                "178670479159308234523480122189668295464"
            ]
        },
        "deprecated": false
    },
    {
        "signature_type": "Function",
        "id": "CVE-2024-46803-6bd2eab8",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e6ea3b8fe398915338147fe54dd2db8155fdafd8",
        "signature_version": "v1",
        "target": {
            "function": "kfd_dbg_trap_disable",
            "file": "drivers/gpu/drm/amd/amdkfd/kfd_debug.c"
        },
        "digest": {
            "function_hash": "233284410880765740494605863536024543434",
            "length": 643.0
        },
        "deprecated": false
    },
    {
        "signature_type": "Function",
        "id": "CVE-2024-46803-aa9d5252",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e6ea3b8fe398915338147fe54dd2db8155fdafd8",
        "signature_version": "v1",
        "target": {
            "function": "debug_event_write_work_handler",
            "file": "drivers/gpu/drm/amd/amdkfd/kfd_debug.c"
        },
        "digest": {
            "function_hash": "335269254666838245990963583890121570407",
            "length": 213.0
        },
        "deprecated": false
    },
    {
        "signature_type": "Function",
        "id": "CVE-2024-46803-dbd6126a",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@547033b593063eb85bfdf9b25a5f1b8fd1911be2",
        "signature_version": "v1",
        "target": {
            "function": "debug_event_write_work_handler",
            "file": "drivers/gpu/drm/amd/amdkfd/kfd_debug.c"
        },
        "digest": {
            "function_hash": "335269254666838245990963583890121570407",
            "length": 213.0
        },
        "deprecated": false
    },
    {
        "signature_type": "Line",
        "id": "CVE-2024-46803-fb97c52a",
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@547033b593063eb85bfdf9b25a5f1b8fd1911be2",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/amd/amdkfd/kfd_debug.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "108126075567411971182530597356980860789",
                "8546026351265988186730630650354665546",
                "337839054028142393606462359561433297466",
                "267241437712741229640969651453708583433",
                "273768177777564349104672820843298550960",
                "149694891575143745845267263435967303013",
                "178670479159308234523480122189668295464"
            ]
        },
        "deprecated": false
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.5.0
Fixed
6.6.50
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.10.9