CVE-2024-49892

MEDIUM

Linux kernel - Info Disclosure

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Initialize get_bytes_per_element's default to 1 Variables, used as denominators and maybe not assigned to other values, should not be 0. bytes_per_element_y & bytes_per_element_c are initialized by get_bytes_per_element() which should never return 0. This fixes 10 DIVIDE_BY_ZERO issues reported by Coverity.

References (10)

[Mailing List] https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

[Mailing List] https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html

[Patch] https://git.kernel.org/stable/c/8f0abb39c16e719129de10596b3ae3363fa178b4

[Patch] https://git.kernel.org/stable/c/1f9f8186e239222f1c8d3dd73bf3bc6ae86c5e76

[Patch] https://git.kernel.org/stable/c/3334ab72cbba55a632f24579cd47c4a4e5e69cda

[Patch] https://git.kernel.org/stable/c/4067f4fa0423a89fb19a30b57231b384d77d2610

[Patch] https://git.kernel.org/stable/c/a23d6029e730f8a151b1a34afb169baac1274583

[Patch] https://git.kernel.org/stable/c/bc00d211da4ffad5314a2043b50bdc8ff8a33724

[Patch] https://git.kernel.org/stable/c/c7630935d9a4986e8c0ed91658a781b7a77d73f7

[Patch] https://git.kernel.org/stable/c/f921335123f6620c3dce5c96fbb95f18524a021c

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 0.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-369

Status published

Products (8)

linux/Kernel 4.15.0 - 5.4.285linux

linux/Kernel 5.11.0 - 5.15.168linux

linux/Kernel 5.16.0 - 6.1.113linux

linux/Kernel 5.5.0 - 5.10.227linux

linux/Kernel 6.11.0 - 6.11.3linux

linux/Kernel 6.2.0 - 6.6.55linux

linux/Kernel 6.7.0 - 6.10.14linux

linux/linux_kernel < 5.10.227

Published Oct 21, 2024

Tracked Since Feb 18, 2026