PT-2024-7832 · Linux+6 · Linux Kernel+6

Published

2024-04-15

·

Updated

2025-09-29

·

CVE-2024-27008

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to an out of bounds access in the Linux kernel's drm component, specifically in the nv04 module. When the Output Resource (dcb->or) value is assigned in fabricate dcb output(), there may be out of bounds access to the dac users array if dcb->or is zero, because ffs(dcb->or) is used as an index. The or argument of fabricate dcb output() must be interpreted as a number of bits to set, not a value. Utilizing macros from enum nouveau or in calls instead of hardcoding can resolve the issue. The vulnerability was found by the Linux Verification Center with SVACE.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
BDU:2024-09332
CVE-2024-27008
DLA-3840-1
DLA-3842-1
DSA-5680-1
DSA-5681-1
INFSA-2025_6966
MGASA-2024-0263
MGASA-2024-0266
OESA-2024-1677
OESA-2024-1678
OESA-2024-1679
OESA-2024-1680
OESA-2024-1681
OESA-2024-1682
RHSA-2025:6966
RHSA-2025_6966
SUSE-SU-2024:1643-1
SUSE-SU-2024:1983-1
SUSE-SU-2024:2008-1
SUSE-SU-2024:2019-1
SUSE-SU-2024:2135-1
SUSE-SU-2024:2184-1
SUSE-SU-2024:2190-1
SUSE-SU-2024:2203-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1
SUSE-SU-2025:20166-1
SUSE-SU-2025:20249-1
USN-6893-1
USN-6893-2
USN-6893-3
USN-6896-1
USN-6896-2
USN-6896-3
USN-6896-4
USN-6896-5
USN-6898-1
USN-6898-2
USN-6898-3
USN-6898-4
USN-6917-1
USN-6918-1
USN-6919-1
USN-6927-1
USN-7019-1

Affected Products

Astra Linux
Linuxmint
Linux Kernel
Red Hat
Red Os
Suse
Ubuntu