CVE-2024-26938

MEDIUM

Linux kernel - Info Disclosure

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/i915/bios: Tolerate devdata==NULL in intel_bios_encoder_supports_dp_dual_mode() If we have no VBT, or the VBT didn't declare the encoder in question, we won't have the 'devdata' for the encoder. Instead of oopsing just bail early. We won't be able to tell whether the port is DP++ or not, but so be it. (cherry picked from commit 26410896206342c8a80d2b027923e9ee7d33b733)

References (5)

[Patch] https://git.kernel.org/stable/c/32e39bab59934bfd3f37097d4dd85ac5eb0fd549

[Patch] https://git.kernel.org/stable/c/94cf2fb6feccd625e5b4e23e1b70f39a206f82ac

[Patch] https://git.kernel.org/stable/c/a891add409e3bc381f4f68c2ce9d953f1865cb1f

[Patch] https://git.kernel.org/stable/c/f4bbac954d8f9ab214ea1d4f385de4fa6bd92dd0

[Patch] https://git.kernel.org/stable/c/72e4d3fb72e9f0f016946158a7d95304832768e6

Scores

CVSS v3 5.5

EPSS 0.0002

EPSS Percentile 4.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

Status published

Affected Products (5)

linux/linux_kernel < 6.1.84

linux/linux_kernel

linux/Kernel < 6.6.24linux

linux/Kernel < 6.7.12linux

linux/Kernel < 6.8.3linux

Timeline

Published May 01, 2024

Tracked Since Feb 18, 2026