CVE-2024-46816

low-risk

Published 2024-09-27

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links [Why] Coverity report OVERRUN warning. There are only max_links elements within dc->links. link count could up to AMDGPU_DM_MAX_DISPLAY_INDEX 31. [How] Make sure link count less than max_links.

Do I need to act?

-

0.01% chance of exploitation

EPSS score — low exploit probability

-

Not on CISA KEV list

No confirmed active exploitation reported to CISA

?

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

5

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Linux Kernel

Affected Vendors

Linux

References (8)

https://git.kernel.org/stable/c/13080d052c995aee14695a5b740c245121eb2bcc

Patch https://git.kernel.org/stable/c/36c39a8dcce210649f2f45f252abaa09fcc1ae87

https://git.kernel.org/stable/c/c84632096722fd31251f0957fafc9e90d9a247fd

Patch https://git.kernel.org/stable/c/cf8b16857db702ceb8d52f9219a4613363e2b1cf

https://git.kernel.org/stable/c/e2411b6abf6e5d6c33d0450846673cdf536f0ba4

https://git.kernel.org/stable/c/e3cd0d8362de47f613bfdf315b3f3a9ab71e66bf

https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html

https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

23

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal