CVE-2024-49894

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58

Description: The issue is related to an index out of bounds problem in the cm helper translate curve to degamma hw format function, which could occur when the index 'i' exceeds the number of transfer function points (TRANSFER FUNC POINTS). This could lead to a buffer overflow error, as reported by smatch, affecting 'output tf->tf pts.red', 'output tf->tf pts.green', and 'output tf->tf pts.blue'. The fix adds a check to ensure 'i' is within bounds before accessing the transfer function points, returning false to indicate an error if 'i' is out of bounds.

Recommendations: For Linux kernel versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue. As a temporary workaround, consider restricting access to the cm helper translate curve to degamma hw format function until a patch is available.