5.5

CVE-2024-46709

EPSS 0.02%
Published 13.09.2024 07:15:05
Last modified 19.09.2024 13:26:24
Source 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Open
Login

In the Linux kernel, the following vulnerability has been resolved:

drm/vmwgfx: Fix prime with external buffers

Make sure that for external buffers mapping goes through the dma_buf
interface instead of trying to access pages directly.

External buffers might not provide direct access to readable/writable
pages so to make sure the bo's created from external dma_bufs can be
read dma_buf interface has to be used.

Fixes crashes in IGT's kms_prime with vgem. Regular desktop usage won't
trigger this due to the fact that virtual machines will not have
multiple GPUs but it enables better test coverage in IGT.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 6.6.29 < 6.6.49

Linux ≫ Linux Kernel Version >= 6.8.8 < 6.9

Linux ≫ Linux Kernel Version >= 6.9 < 6.10.8

Linux ≫ Linux Kernel Version6.11 Updaterc1

Linux ≫ Linux Kernel Version6.11 Updaterc2

Linux ≫ Linux Kernel Version6.11 Updaterc3

Linux ≫ Linux Kernel Version6.11 Updaterc4

Linux ≫ Linux Kernel Version6.11 Updaterc5

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.02%	0.04

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

https://git.kernel.org/stable/c/50f1199250912568606b3778dc56646c10cb7b04

Patch

https://git.kernel.org/stable/c/5c12391ee1ab59cb2f3be3f1f5e6d0fc0c2dc854

Patch

https://git.kernel.org/stable/c/9a9716bbbf3dd6b6cbefba3abcc89af8b72631f4

Patch

https://nvd.nist.gov/vuln/detail/CVE-2024-46709

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-46709

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-46709

EUVD