CVE-2024-49913

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2024-49913
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-49913.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-49913
Downstream
Related
Published
2024-10-21T18:01:41.551Z
Modified
2026-03-20T12:39:27.255666Z
Summary
drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream
Details

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Add null check for toppipetoprogram in commitplanesforstream

This commit addresses a null pointer dereference issue in the commit_planes_for_stream function at line 4140. The issue could occur when top_pipe_to_program is null.

The fix adds a check to ensure top_pipe_to_program is not null before accessing its stream_res. This prevents a null pointer dereference.

Reported by smatch: drivers/gpu/drm/amd/amdgpu/../display/dc/core/dc.c:4140 commitplanesforstream() error: we previously assumed 'toppipetoprogram' could be null (see line 3906)

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/49xxx/CVE-2024-49913.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c
Fixed
1ebfa6663807c144be8c8b6727375012409d2356
Fixed
8ab59527852a6f7780aad6185729550ca0569122
Fixed
40193ff73630adf76bc0d82398f7d90fb576dba4
Fixed
e47e563c6f0db7d792a559301862c19ead0dfc2f
Fixed
3929e382e4758aff42da0102a60d13337c99d3b8
Fixed
73efd2a611b62fee71a7b7f27d9d08bb60da8a72
Fixed
66d71a72539e173a9b00ca0b1852cbaa5f5bf1ad

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-49913.json"