CVE-2024-40988

MEDIUM

Linux Kernel < 4.19.317 Buffer Overflow in Radeon DPM

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: fix UBSAN warning in kv_dpm.c Adds bounds check for sumo_vid_mapping_entry.

References (9)

Core 9

Core References

Mailing List

https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Patch

https://git.kernel.org/stable/c/07e8f15fa16695cf4c90e89854e59af4a760055b

Patch

https://git.kernel.org/stable/c/a8c6df9fe5bc390645d1e96eff14ffe414951aad

Patch

https://git.kernel.org/stable/c/febe794b83693257f21a23d2e03ea695a62449c8

Patch

https://git.kernel.org/stable/c/cf1cc8fcfe517e108794fb711f7faabfca0dc855

Patch

https://git.kernel.org/stable/c/f803532bc3825384100dfc58873e035d77248447

Patch

https://git.kernel.org/stable/c/9e57611182a817824a17b1c3dd300ee74a174b42

Patch

https://git.kernel.org/stable/c/468a50fd46a09bba7ba18a11054ae64b6479ecdc

Patch

https://git.kernel.org/stable/c/a498df5421fd737d11bfd152428ba6b1c8538321

Scores

CVSS v3 5.5

EPSS 0.0028

EPSS Percentile 19.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-119

Status published

Products (27)

linux/Kernel 3.11.0 - 4.19.317linux

linux/Kernel 4.20.0 - 5.4.279linux

linux/Kernel 5.11.0 - 5.15.162linux

linux/Kernel 5.16.0 - 6.1.96linux

linux/Kernel 5.5.0 - 5.10.221linux

linux/Kernel 6.2.0 - 6.6.36linux

linux/Kernel 6.7.0 - 6.9.7linux

Linux/Linux < 3.11

Linux/Linux 3.11

Linux/Linux 4.19.317 - 4.19.*

... and 17 more

Published Jul 12, 2024

Tracked Since Feb 18, 2026