CWE
476
Advisory Published
Updated

CVE-2024-49920: drm/amd/display: Check null pointers before multiple uses

First published: Mon Oct 21 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check null pointers before multiple uses [WHAT & HOW] Poniters, such as stream_enc and dc->bw_vbios, are null checked previously in the same function, so Coverity warns "implies that stream_enc and dc->bw_vbios might be null". They are used multiple times in the subsequent code and need to be checked. This fixes 10 FORWARD_NULL issues reported by Coverity.

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected SoftwareAffected VersionHow to fix
Linux Kernel<6.11.3
debian/linux<=5.10.223-1<=5.10.234-1<=6.1.129-1<=6.1.128-1
6.12.20-1
6.12.21-1

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is the severity of CVE-2024-49920?

    The severity of CVE-2024-49920 has not been officially rated, but it is important to address it due to potential impacts on system stability and security.

  • How do I fix CVE-2024-49920?

    To fix CVE-2024-49920, update your Linux kernel to version 6.12.12-1 or later.

  • Which Linux kernel versions are affected by CVE-2024-49920?

    CVE-2024-49920 affects Linux kernel versions prior to 6.12.12.

  • Is CVE-2024-49920 related to AMD graphics?

    Yes, CVE-2024-49920 is specifically associated with the AMD display component of the Linux kernel.

  • What types of systems are at risk from CVE-2024-49920?

    Systems running vulnerable versions of the Linux kernel that utilize AMD graphics components are at risk from CVE-2024-49920.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203