OpenCVE

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Reset IH OVERFLOW_CLEAR bit Allows us to detect subsequent IH ring buffer overflows as well.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Redhat	Enterprise Linux

No data.

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 9
kernel-0:5.14.0-503.11.1.el9_5	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:9315	2024-11-12T00:00:00Z
kernel-0:5.14.0-503.11.1.el9_5	cpe:/o:redhat:enterprise_linux:9	RHSA-2024:9315	2024-11-12T00:00:00Z

References

Link	Providers
https://git.kernel.org/stable/c/2827633c9dab6304ec4cdbf369363219832e605d
https://git.kernel.org/stable/c/7330256268664ea0a7dd5b07a3fed363093477dd
https://git.kernel.org/stable/c/8983397951b4b0bd51bb4b4ba9749424e1ccbb70
https://git.kernel.org/stable/c/9a9d00c23d170d4ef5a1b28e6b69f5c85dd12bc1
https://git.kernel.org/stable/c/a28f4d1e0bed85943d309ac243fd1c200f8af9a2
https://lore.kernel.org/linux-cve-announce/2024041737-CVE-2024-26915-112b@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2024-26915
https://www.cve.org/CVERecord?id=CVE-2024-26915

History

Wed, 13 Nov 2024 02:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat Redhat enterprise Linux
CPEs		cpe:/a:redhat:enterprise_linux:9 cpe:/o:redhat:enterprise_linux:9
Vendors & Products		Redhat Redhat enterprise Linux

Wed, 06 Nov 2024 17:15:00 +0000

Type	Values Removed	Values Added
Metrics	cvssV3_1 `{'score': 4.7, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H'}`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}`

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-04-17T15:59:25.079Z

Updated: 2024-11-06T16:17:08.097Z

Reserved: 2024-02-19T14:20:24.193Z

Link: CVE-2024-26915

Vulnrichment

Updated: 2024-08-02T00:21:05.445Z

NVD

Status : Awaiting Analysis

Published: 2024-04-17T16:15:08.143

Modified: 2024-11-21T09:03:22.360

Link: CVE-2024-26915

Redhat

Severity : Low

Publid Date: 2024-04-17T00:00:00Z

Links: CVE-2024-26915 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-26915", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-02-19T14:20:24.193Z", "datePublished": "2024-04-17T15:59:25.079Z", "dateUpdated": "2024-11-06T16:17:08.097Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-11-05T09:18:06.668Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Reset IH OVERFLOW_CLEAR bit\n\nAllows us to detect subsequent IH ring buffer overflows as well."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/gpu/drm/amd/amdgpu/cik_ih.c", "drivers/gpu/drm/amd/amdgpu/cz_ih.c", "drivers/gpu/drm/amd/amdgpu/iceland_ih.c", "drivers/gpu/drm/amd/amdgpu/ih_v6_0.c", "drivers/gpu/drm/amd/amdgpu/ih_v6_1.c", "drivers/gpu/drm/amd/amdgpu/navi10_ih.c", "drivers/gpu/drm/amd/amdgpu/si_ih.c", "drivers/gpu/drm/amd/amdgpu/tonga_ih.c", "drivers/gpu/drm/amd/amdgpu/vega10_ih.c", "drivers/gpu/drm/amd/amdgpu/vega20_ih.c"], "versions": [{"version": "1da177e4c3f4", "lessThan": "9a9d00c23d17", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "a28f4d1e0bed", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "8983397951b4", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "2827633c9dab", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f4", "lessThan": "733025626866", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/gpu/drm/amd/amdgpu/cik_ih.c", "drivers/gpu/drm/amd/amdgpu/cz_ih.c", "drivers/gpu/drm/amd/amdgpu/iceland_ih.c", "drivers/gpu/drm/amd/amdgpu/ih_v6_0.c", "drivers/gpu/drm/amd/amdgpu/ih_v6_1.c", "drivers/gpu/drm/amd/amdgpu/navi10_ih.c", "drivers/gpu/drm/amd/amdgpu/si_ih.c", "drivers/gpu/drm/amd/amdgpu/tonga_ih.c", "drivers/gpu/drm/amd/amdgpu/vega10_ih.c", "drivers/gpu/drm/amd/amdgpu/vega20_ih.c"], "versions": [{"version": "5.15.152", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.1.82", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.6.18", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.7.6", "lessThanOrEqual": "6.7.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.8", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "references": [{"url": "https://git.kernel.org/stable/c/9a9d00c23d170d4ef5a1b28e6b69f5c85dd12bc1"}, {"url": "https://git.kernel.org/stable/c/a28f4d1e0bed85943d309ac243fd1c200f8af9a2"}, {"url": "https://git.kernel.org/stable/c/8983397951b4b0bd51bb4b4ba9749424e1ccbb70"}, {"url": "https://git.kernel.org/stable/c/2827633c9dab6304ec4cdbf369363219832e605d"}, {"url": "https://git.kernel.org/stable/c/7330256268664ea0a7dd5b07a3fed363093477dd"}], "title": "drm/amdgpu: Reset IH OVERFLOW_CLEAR bit", "x_generator": {"engine": "bippy-9e1c9544281a"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "description": "CWE-noinfo Not enough information"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-06-07T20:53:44.445859Z", "id": "CVE-2024-26915", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-06T16:17:08.097Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T00:21:05.445Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/9a9d00c23d170d4ef5a1b28e6b69f5c85dd12bc1", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/a28f4d1e0bed85943d309ac243fd1c200f8af9a2", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/8983397951b4b0bd51bb4b4ba9749424e1ccbb70", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/2827633c9dab6304ec4cdbf369363219832e605d", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/7330256268664ea0a7dd5b07a3fed363093477dd", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/9a9d00c23d170d4ef5a1b28e6b69f5c85dd12bc1", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/a28f4d1e0bed85943d309ac243fd1c200f8af9a2", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/8983397951b4b0bd51bb4b4ba9749424e1ccbb70", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/2827633c9dab6304ec4cdbf369363219832e605d", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/7330256268664ea0a7dd5b07a3fed363093477dd", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T00:21:05.445Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2024-26915", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-06-07T20:53:44.445859Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "description": "CWE-noinfo Not enough information"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-07T20:53:48.231Z"}}], "cna": {"title": "drm/amdgpu: Reset IH OVERFLOW_CLEAR bit", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "1da177e4c3f4", "lessThan": "9a9d00c23d17", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "a28f4d1e0bed", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "8983397951b4", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "2827633c9dab", "versionType": "git"}, {"status": "affected", "version": "1da177e4c3f4", "lessThan": "733025626866", "versionType": "git"}], "programFiles": ["drivers/gpu/drm/amd/amdgpu/cik_ih.c", "drivers/gpu/drm/amd/amdgpu/cz_ih.c", "drivers/gpu/drm/amd/amdgpu/iceland_ih.c", "drivers/gpu/drm/amd/amdgpu/ih_v6_0.c", "drivers/gpu/drm/amd/amdgpu/ih_v6_1.c", "drivers/gpu/drm/amd/amdgpu/navi10_ih.c", "drivers/gpu/drm/amd/amdgpu/si_ih.c", "drivers/gpu/drm/amd/amdgpu/tonga_ih.c", "drivers/gpu/drm/amd/amdgpu/vega10_ih.c", "drivers/gpu/drm/amd/amdgpu/vega20_ih.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "unaffected", "version": "5.15.152", "versionType": "semver", "lessThanOrEqual": "5.15.*"}, {"status": "unaffected", "version": "6.1.82", "versionType": "semver", "lessThanOrEqual": "6.1.*"}, {"status": "unaffected", "version": "6.6.18", "versionType": "semver", "lessThanOrEqual": "6.6.*"}, {"status": "unaffected", "version": "6.7.6", "versionType": "semver", "lessThanOrEqual": "6.7.*"}, {"status": "unaffected", "version": "6.8", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["drivers/gpu/drm/amd/amdgpu/cik_ih.c", "drivers/gpu/drm/amd/amdgpu/cz_ih.c", "drivers/gpu/drm/amd/amdgpu/iceland_ih.c", "drivers/gpu/drm/amd/amdgpu/ih_v6_0.c", "drivers/gpu/drm/amd/amdgpu/ih_v6_1.c", "drivers/gpu/drm/amd/amdgpu/navi10_ih.c", "drivers/gpu/drm/amd/amdgpu/si_ih.c", "drivers/gpu/drm/amd/amdgpu/tonga_ih.c", "drivers/gpu/drm/amd/amdgpu/vega10_ih.c", "drivers/gpu/drm/amd/amdgpu/vega20_ih.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/9a9d00c23d170d4ef5a1b28e6b69f5c85dd12bc1"}, {"url": "https://git.kernel.org/stable/c/a28f4d1e0bed85943d309ac243fd1c200f8af9a2"}, {"url": "https://git.kernel.org/stable/c/8983397951b4b0bd51bb4b4ba9749424e1ccbb70"}, {"url": "https://git.kernel.org/stable/c/2827633c9dab6304ec4cdbf369363219832e605d"}, {"url": "https://git.kernel.org/stable/c/7330256268664ea0a7dd5b07a3fed363093477dd"}], "x_generator": {"engine": "bippy-9e1c9544281a"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Reset IH OVERFLOW_CLEAR bit\n\nAllows us to detect subsequent IH ring buffer overflows as well."}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2024-11-05T09:18:06.668Z"}}}, "cveMetadata": {"cveId": "CVE-2024-26915", "state": "PUBLISHED", "dateUpdated": "2024-11-06T16:17:08.097Z", "dateReserved": "2024-02-19T14:20:24.193Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-04-17T15:59:25.079Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}

{"descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Reset IH OVERFLOW_CLEAR bit\n\nAllows us to detect subsequent IH ring buffer overflows as well."}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/amdgpu: Restablecer el bit IH OVERFLOW_CLEAR Tambi\u00e9n nos permite detectar desbordamientos posteriores del b\u00fafer en anillo IH."}], "id": "CVE-2024-26915", "lastModified": "2024-11-21T09:03:22.360", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2024-04-17T16:15:08.143", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/2827633c9dab6304ec4cdbf369363219832e605d"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/7330256268664ea0a7dd5b07a3fed363093477dd"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/8983397951b4b0bd51bb4b4ba9749424e1ccbb70"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/9a9d00c23d170d4ef5a1b28e6b69f5c85dd12bc1"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/a28f4d1e0bed85943d309ac243fd1c200f8af9a2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://git.kernel.org/stable/c/2827633c9dab6304ec4cdbf369363219832e605d"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://git.kernel.org/stable/c/7330256268664ea0a7dd5b07a3fed363093477dd"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://git.kernel.org/stable/c/8983397951b4b0bd51bb4b4ba9749424e1ccbb70"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://git.kernel.org/stable/c/9a9d00c23d170d4ef5a1b28e6b69f5c85dd12bc1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://git.kernel.org/stable/c/a28f4d1e0bed85943d309ac243fd1c200f8af9a2"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Awaiting Analysis"}

{"affected_release": [{"advisory": "RHSA-2024:9315", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "kernel-0:5.14.0-503.11.1.el9_5", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2024-11-12T00:00:00Z"}, {"advisory": "RHSA-2024:9315", "cpe": "cpe:/o:redhat:enterprise_linux:9", "package": "kernel-0:5.14.0-503.11.1.el9_5", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2024-11-12T00:00:00Z"}], "bugzilla": {"description": "kernel: drm/amdgpu: Reset IH OVERFLOW_CLEAR bit", "id": "2275790", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275790"}, "csaw": false, "cvss3": {"cvss3_base_score": "4.7", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", "status": "verified"}, "cwe": "CWE-120", "details": ["In the Linux kernel, the following vulnerability has been resolved:\ndrm/amdgpu: Reset IH OVERFLOW_CLEAR bit\nAllows us to detect subsequent IH ring buffer overflows as well.", "A flaw was found in the Linux kernel. The IH OVERFLOW_CLEAR bit was not reset."], "name": "CVE-2024-26915", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Fix deferred", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Fix deferred", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2024-04-17T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-26915\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-26915\nhttps://lore.kernel.org/linux-cve-announce/2024041737-CVE-2024-26915-112b@gregkh/T"], "threat_severity": "Low", "upstream_fix": "kernel 5.15.152, kernel 6.1.82, kernel 6.6.18, kernel 6.7.6, kernel 6.8"}