CVE-2024-49912

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58

Description: A null pointer dereference issue has been identified in the Linux kernel, specifically in the drm/amd/display component. The problem arises when the stream status is null in the planes changed for existing stream function. Previously, the code assumed stream status could be null but failed to handle this case, leading to a potential null pointer dereference. This issue was reported by smatch.

Recommendations: For Linux kernel versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue. As a temporary workaround, consider applying a null check for stream status in the planes changed for existing stream function to prevent null pointer dereferences.

Exploit

Fix

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2025_16880

ALT-PU-2024-14046

ALT-PU-2024-14268

AZL-51177

AZL-51312

BDU:2025-04162

CVE-2024-49912

DLA-4008-1

MGASA-2024-0344

MGASA-2024-0345

OESA-2024-2367

OPENSUSE-SU-2024:14500-1

OPENSUSE-SU-2024_3983-1

OPENSUSE-SU-2024_3985-1

OPENSUSE-SU-2024_4314-1

OPENSUSE-SU-2024_4316-1

OPENSUSE-SU-2025:14705-1

SUSE-SU-2024:3983-1

SUSE-SU-2024:3985-1

SUSE-SU-2024:4314-1

SUSE-SU-2024:4316-1

SUSE-SU-2024:4318-1

SUSE-SU-2024:4364-1

SUSE-SU-2024:4387-1

SUSE-SU-2025:20163-1

SUSE-SU-2025:20164-1

SUSE-SU-2025:20246-1

SUSE-SU-2025:20247-1

USN-7170-1

USN-7276-1

USN-7277-1

USN-7301-1

USN-7303-1

USN-7303-2

USN-7303-3

USN-7304-1

USN-7311-1

USN-7384-1

USN-7384-2

USN-7385-1

USN-7386-1

USN-7403-1

USN-7468-1

Affected Products

Alt Linux

Astra Linux

Debian

Linuxmint

Linux Kernel

Red Os

Suse

Ubuntu

CVE-2024-49912

Weakness Enumeration

Related Identifiers

Affected Products

References · 2655