drm/amd: Fix an out of bounds error in BIOS parser
3Vexday Risk Score
No sign of exploitation. No public exploitation artifact known so far.
ssvc Trackepss 0.2%
exploitation probability
0.2%top 94% of all CVEs
observed exploitation
nono source reports it
In the Linux kernel, the following vulnerability has been resolved:
drm/amd: Fix an out of bounds error in BIOS parser
The array is hardcoded to 8 in atomfirmware.h, but firmware provides
a bigger one sometimes. Deferencing the larger array causes an out
of bounds error.
commit 4fc1ba4aa589 ("drm/amd/display: fix array index out of bound error
in bios parser") fixed some of this, but there are two other cases
not covered by it. Fix those as well.
Affected products
Linux · LinuxReferences
https://git.kernel.org/stable/c/5675ecd2e0b00a4318ba1db1a1234e7d45b13d6bhttps://git.kernel.org/stable/c/66acfe798cd08b36cfbb65a30fab3159811304a7https://git.kernel.org/stable/c/b8e7589f50b709b647b642531599e70707faf70chttps://git.kernel.org/stable/c/d116db180decec1b21bba31d2ff495ac4d8e1b83https://git.kernel.org/stable/c/dea2dbec716c38a0b73b6ad01d91e2b120cc5f1e