5.5

CVE-2024-43867

drm/nouveau: prime: fix refcount underflow

In the Linux kernel, the following vulnerability has been resolved:

drm/nouveau: prime: fix refcount underflow

Calling nouveau_bo_ref() on a nouveau_bo without initializing it (and
hence the backing ttm_bo) leads to a refcount underflow.

Instead of calling nouveau_bo_ref() in the unwind path of
drm_gem_object_init(), clean things up manually.

(cherry picked from commit 1b93f3e89d03cfc576636e195466a0d728ad8de5)
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 3.9 < 5.4.282
LinuxLinux Kernel Version >= 5.5 < 5.10.224
LinuxLinux Kernel Version >= 5.11 < 5.15.165
LinuxLinux Kernel Version >= 5.16 < 6.1.104
LinuxLinux Kernel Version >= 6.2 < 6.6.45
LinuxLinux Kernel Version >= 6.7 < 6.10.4
LinuxLinux Kernel Version6.11 Updaterc1
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.22% 0.117
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-191 Integer Underflow (Wrap or Wraparound)

The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.

https://git.kernel.org/stable/c/16998763c62bb465ebc409d0373b9cdcef1a61a6
Patch
https://git.kernel.org/stable/c/2a1b327d57a8ac080977633a18999f032d7e9e3f
Patch
https://git.kernel.org/stable/c/3bcb8bba72ce89667fa863054956267c450c47ef
Patch
https://git.kernel.org/stable/c/906372e753c5027a1dc88743843b6aa2ad1aaecf
Patch
https://git.kernel.org/stable/c/a9bf3efc33f1fbf88787a277f7349459283c9b95
Patch
https://git.kernel.org/stable/c/ebebba4d357b6c67f96776a48ddbaf0060fa4c10
Patch
https://git.kernel.org/stable/c/f23cd66933fe76b84d8e282e5606b4d99068c320
Patch
https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html
https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html