PT-2024-10003 · Linux+5 · Linux Kernel+5

Alex Deucher

+4

·

Published

2024-11-11

·

Updated

2026-05-26

·

CVE-2024-53133

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux Kernel versions prior to 6.11.9
Description The issue is related to the dc state copy internal function in the Linux kernel's drm/amd/display module. It concerns a double free vulnerability that occurs when a dml allocation fails, causing subsequent calls to dc state copy internal to shallow copy invalid memory. If the new state is released, a double free would occur, potentially allowing an attacker to impact the confidentiality, integrity, and availability of protected information.
Recommendations For Linux Kernel versions prior to 6.11.9, update to a version that includes the fix for the dml allocation failure issue, such as version 6.11.10 or later, to prevent double free crashes. As a temporary workaround, consider applying the patch from commit bcafdc61529a48f6f06355d78eb41b3aeda5296c to reset dml pointers in new state to NULL and avoid invalid pointers.

Exploit

Fix

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-415

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2024-17211
ALT-PU-2025-12647
AZL-54101
AZL-54105
BDU:2025-00130
CVE-2024-53133
ECHO-6E0F-16C9-304B
OPENSUSE-SU-2025_0117-1
OPENSUSE-SU-2025_0153-1
OPENSUSE-SU-2025_0154-1
SUSE-SU-2025:0117-1
SUSE-SU-2025:0153-1
SUSE-SU-2025:0154-1
SUSE-SU-2025:0289-1
SUSE-SU-2025:20165-1
SUSE-SU-2025:20166-1
SUSE-SU-2025:20248-1
SUSE-SU-2025:20249-1
USN-7276-1
USN-7277-1
USN-7310-1
USN-7449-1
USN-7449-2
USN-7450-1
USN-7451-1
USN-7452-1
USN-7453-1
USN-7468-1
USN-7523-1
USN-7524-1

Affected Products

Alt Linux
Debian
Linux Kernel
Linuxmint
Suse
Ubuntu