CVE-2024-26657

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.7.0

Description The vulnerability is a null pointer dereference in the drm sched entity init function, which can be triggered by sending an amdgpu cs wait ioctl to the AMDGPU DRM driver on any ASICs with valid context. The bug was reported by Joonkyo Jung. The change fixes the null pointer dereference in the init entity, and the stack demonstrates the error condition.

The amdgpu cs wait ioctl can be used to exploit this vulnerability. The amdgpu ctx get entity function is also involved in the call trace.

The vulnerability can cause a kernel NULL pointer dereference, which can lead to a denial of service.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for the null pointer dereference in the drm sched entity init function.

As a temporary workaround, consider disabling the amdgpu cs wait ioctl function until a patch is available.

Note: The provided information does not include specific details about the fixed version or the patchday that contains the fix for the vulnerability. Therefore, the recommendation is to update to the latest available version of the Linux kernel.

At the moment, there is no information about a newer version that contains a fix for this vulnerability.