CVE-2024-57918

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.10.0

Description A page fault vulnerability has been resolved in the Linux kernel, specifically in the AMD GPU display driver. The issue arose due to a mismatch in the maximum surface definition, where the DC driver used two different values, MAX SURFACES and MAX SURFACE NUM. This led to a page fault when the cursor overlay mode was introduced for AMD display versions that support two overlay planes. The vulnerability was faced by Cosmic users.

Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix for the page fault vulnerability. Specifically, update to a version later than 6.10.0. As a temporary workaround, consider disabling the cursor overlay mode for AMD display versions that support two overlay planes until a patch is available.