CVE-2024-40924

MEDIUM EPSS 20.1%
Published Jul 12, 20241y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Jul 12, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: drm/i915/dpt: Make DPT object unshrinkable In some scenarios, the DPT object gets shrunk but the actual framebuffer did not and thus its still there on the DPT's vm->bound_list. Then it tries to rewrite the PTEs via a stale CPU mapping. This causes panic. [vsyrjala: Add TODO comment] (cherry picked from commit 51064d471c53dcc8eddd2333c3f1c1d9131ba36c)

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
20.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 4

VendorProductVersionRange
linuxlinux_kernel*≥6.0  –  <6.1.95
linuxlinux_kernel*≥6.2  –  <6.6.35
linuxlinux_kernel*≥6.7  –  <6.9.6
linuxlinux_kernel6.10any

References 5

  • git.kernel.org https://git.kernel.org/stable/c/327280149066f0e5f2e50356b5823f76dabfe86e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/43e2b37e2ab660c3565d4cff27922bc70e79c3f1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7a9883be3b98673333eec65c4a21cc18e60292eb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a2552020fb714ff357182c3c179abfac2289f84d
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/327280149066f0e5f2e50356b5823f76dabfe86e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/43e2b37e2ab660c3565d4cff27922bc70e79c3f1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7a9883be3b98673333eec65c4a21cc18e60292eb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a2552020fb714ff357182c3c179abfac2289f84d
    Patch