Products

Linux kernel

linux_kernel

• *

linux_kernel

• 6

• .

• 1

• 1

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

Published : Sept. 13, 2024, 6:15 a.m.
Last Modified : Sept. 13, 2024, 4:53 p.m.

Description

In the Linux kernel, the following vulnerability has been resolved: video/aperture: optionally match the device in sysfb_disable() In aperture_remove_conflicting_pci_devices(), we currently only call sysfb_disable() on vga class devices. This leads to the following problem when the pimary device is not VGA compatible: 1. A PCI device with a non-VGA class is the boot display 2. That device is probed first and it is not a VGA device so sysfb_disable() is not called, but the device resources are freed by aperture_detach_platform_device() 3. Non-primary GPU has a VGA class and it ends up calling sysfb_disable() 4. NULL pointer dereference via sysfb_disable() since the resources have already been freed by aperture_detach_platform_device() when it was called by the other device. Fix this by passing a device pointer to sysfb_disable() and checking the device to determine if we should execute it or not. v2: Fix build when CONFIG_SCREEN_INFO is not set v3: Move device check into the mutex Drop primary variable in aperture_remove_conflicting_pci_devices() Drop __init on pci sysfb_pci_dev_is_enabled()

References

URL	Source
https://git.kernel.org/stable/c/17e78f43de0c6da34204cc858b4cc05671ea9acf	416baaa9-dc9f-4396-8d5f-8c081fb06d67
https://git.kernel.org/stable/c/b49420d6a1aeb399e5b107fc6eb8584d0860fbd7	416baaa9-dc9f-4396-8d5f-8c081fb06d67

CPEs

Type	Vendor	Product	Version	Update	Edition	Language	Software Edition	Target Software	Target Hardware	Other Information
o	linux	linux_kernel	/	/	/	/	/	/	/	/
o	linux	linux_kernel	6.11	rc1	/	/	/	/	/	/
o	linux	linux_kernel	6.11	rc2	/	/	/	/	/	/
o	linux	linux_kernel	6.11	rc3	/	/	/	/	/	/
o	linux	linux_kernel	6.11	rc4	/	/	/	/	/	/
o	linux	linux_kernel	6.11	rc5	/	/	/	/	/	/