PT-2024-7186 · Linux+6 · Linux Kernel+6

Published

2024-05-02

·

Updated

2025-09-29

·

CVE-2024-46804

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to an incorrect calculation of an index in the Linux kernel's DRM/AMD display module, specifically in the hdcp ddc.c file. This could potentially allow an attacker to impact the confidentiality, integrity, and availability of protected information. The problem was identified by Coverity, which reported an OVERRUN warning due to the lack of validation of the array index. To address this, a check has been added to ensure the validity of the msg id and the array index.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Validation of Array Index

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-129

Related Identifiers

ALSA-2025_16880
ALT-PU-2024-12535
ALT-PU-2024-12541
ALT-PU-2024-13979
ALT-PU-2024-14046
ALT-PU-2024-15824
BDU:2024-08525
CVE-2024-46804
DLA-3912-1
DLA-4008-1
DSA-5782-1
OESA-2024-2216
OESA-2024-2218
OESA-2024-2219
OESA-2024-2220
OPENSUSE-SU-2024_3984-1
OPENSUSE-SU-2024_3986-1
OPENSUSE-SU-2024_4315-1
OPENSUSE-SU-2024_4376-1
SUSE-SU-2024:3984-1
SUSE-SU-2024:3986-1
SUSE-SU-2024:4315-1
SUSE-SU-2024:4318-1
SUSE-SU-2024:4364-1
SUSE-SU-2024:4376-1
SUSE-SU-2024:4387-1
SUSE-SU-2025:20163-1
SUSE-SU-2025:20164-1
SUSE-SU-2025:20246-1
SUSE-SU-2025:20247-1
USN-7100-1
USN-7100-2
USN-7123-1
USN-7144-1
USN-7154-1
USN-7154-2
USN-7155-1
USN-7156-1
USN-7194-1
USN-7196-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu