Harry Wentland

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.6.37 **Description** A dynamic memory safety error detector (KASAN) catches and generates error messages "BUG: KASAN: slab-out-of-bounds" as the writeback connector does not support certain features which are not initialized. The issue occurs in the drm/amd/display component when it attempts to write back data. To resolve this, the connector type is checked, and if it is DRM MODE CONNECTOR WRITEBACK, the operation is skipped. **Recommendations** Update to Linux kernel version 6.6.37 or later to resolve the issue. As a temporary workaround, consider disabling the writeback feature for the drm/amd/display component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a NULL pointer dereference in the Linux kernel's drm/amd/display module. Specifically, during the hibernate sequence, the source context might not have a clk mgr, which can lead to a NULL pointer dereference. This can cause a denial of service. The vulnerability is associated with the function dc resource state copy construct() in the drivers/gpu/drm/amd/display/dc/core/dc resource.c file of the AMD video driver. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.