Description


In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check msg_id before processing transcation [WHY & HOW] HDCP_MESSAGE_ID_INVALID (-1) is not a valid msg_id nor is it a valid array index, and it needs checking before used. This fixes 4 OVERRUN issues reported by Coverity.

Related CPE's


o

linux

linux_kernel

5

Weaknesses



CWE-129

CVSS impact metrics


CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information


Source identifier

416baaa9-dc9f-4396-8d5f-8c081fb06d67

Vulnerability status

Analyzed

Published

2024-09-27T13:15:14.297

2 weeks ago

Last modified

2024-10-04T17:27:47.450

1 week ago