What is the severity of CVE-2024-49971?

The severity of CVE-2024-49971 has been classified as medium due to the potential impacts on system stability.

How do I fix CVE-2024-49971?

To fix CVE-2024-49971, update your Linux kernel to version 6.11.3 or later.

What systems are affected by CVE-2024-49971?

CVE-2024-49971 affects versions of the Linux kernel prior to 6.11.3.

What types of vulnerabilities does CVE-2024-49971 include?

CVE-2024-49971 involves a flaw in the drm/amd/display component related to array handling.

Was CVE-2024-49971 publicly disclosed?

CVE-2024-49971 was publicly disclosed and has been patched in the latest kernel updates.

Vulnerability/
CVE-2024-49971

medium

5.5

21/10/2024

16/1/2025

CVE-2024-49971: drm/amd/display: Increase array size of dummy_boolean

First published: Mon Oct 21 2024(Updated: )

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Increase array size of dummy_boolean [WHY] dml2_core_shared_mode_support and dml_core_mode_support access the third element of dummy_boolean, i.e. hw_debug5 = &s->dummy_boolean[2], when dummy_boolean has size of 2. Any assignment to hw_debug5 causes an OVERRUN. [HOW] Increase dummy_boolean's array size to 3. This fixes 2 OVERRUN issues reported by Coverity.

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Kernel	<6.11.3

Remedy

https://git.kernel.org/stable/c/6d64d39486197083497a01b39e23f2f8474b35d3

Remedy

https://git.kernel.org/stable/c/e9e48b7bb9cf3b78f0305ef0144aaf61da0a83d8

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-49971?
The severity of CVE-2024-49971 has been classified as medium due to the potential impacts on system stability.
How do I fix CVE-2024-49971?
To fix CVE-2024-49971, update your Linux kernel to version 6.11.3 or later.
What systems are affected by CVE-2024-49971?
CVE-2024-49971 affects versions of the Linux kernel prior to 6.11.3.
What types of vulnerabilities does CVE-2024-49971 include?
CVE-2024-49971 involves a flaw in the drm/amd/display component related to array handling.
Was CVE-2024-49971 publicly disclosed?
CVE-2024-49971 was publicly disclosed and has been patched in the latest kernel updates.

agent/references
agent/title
agent/type
agent/description
agent/first-publish-date
agent/author
agent/event
agent/severity
agent/remedy
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/linux
canonical/linux kernel

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2024-49971?
The severity of CVE-2024-49971 has been classified as medium due to the potential impacts on system stability.
How do I fix CVE-2024-49971?
To fix CVE-2024-49971, update your Linux kernel to version 6.11.3 or later.
What systems are affected by CVE-2024-49971?
CVE-2024-49971 affects versions of the Linux kernel prior to 6.11.3.
What types of vulnerabilities does CVE-2024-49971 include?
CVE-2024-49971 involves a flaw in the drm/amd/display component related to array handling.
Was CVE-2024-49971 publicly disclosed?
CVE-2024-49971 was publicly disclosed and has been patched in the latest kernel updates.