CVE-2024-49895

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58

Description: The issue is related to a potential index out of bounds problem in the cm3 helper translate curve to degamma hw format function within the DCN30 color management module. This could occur when the index i exceeds the number of transfer function points. The fix involves adding a check to ensure i is within bounds before accessing the transfer function points, returning false to indicate an error if i is out of bounds. The issue was reported by smatch, highlighting potential buffer overflows in output tf->tf pts.red, output tf->tf pts.green, and output tf->tf pts.blue.

Recommendations: For Linux kernel versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue. As a temporary workaround, consider restricting access to the cm3 helper translate curve to degamma hw format function until a patch is available.