CVE-2024-42120 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Check pipe offset before setting vblank

pipe_ctx has a size of MAX_PIPES so checking its index before accessing
the array.

This fixes an OVERRUN issue reported by Coverity.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00058.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Linux	Linux Kernel

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Linux	Linux Kernel

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/0b3702f9d43d163fd05e43b7d7e22e766dbef329
https://git.kernel.org/stable/c/5396a70e8cf462ec5ccf2dc8de103c79de9489e6
https://git.kernel.org/stable/c/96bf81cc1bd058bb8af6e755a548e926e934dfd1
https://git.kernel.org/stable/c/b2e9abc95583ac7bbb2c47da4d476a798146dfd6
https://git.kernel.org/stable/c/c5ec2afeeee4c91cebc4eff6d4f1ecf4047259f4
https://git.kernel.org/stable/c/d2c3645a4a5ae5d933b4116c305d9d82b8199dbf
https://lore.kernel.org/linux-cve-announce/2024073024-CVE-2024-42120-c2ff@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2024-42120
https://www.cve.org/CVERecord?id=CVE-2024-42120

History

Wed, 11 Sep 2024 13:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Fri, 30 Aug 2024 02:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-125
Metrics	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}`	cvssV3_1 `{'score': 5.2, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H'}`

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-07-30T07:46:12.136Z

Updated: 2025-07-11T17:19:57.802Z

Reserved: 2024-07-29T15:50:41.178Z

Link: CVE-2024-42120

Vulnrichment

Updated: 2024-08-02T04:54:32.091Z

NVD

Status : Awaiting Analysis

Published: 2024-07-30T08:15:04.273

Modified: 2024-11-21T09:33:38.673

Link: CVE-2024-42120

Redhat

Severity : Moderate

Publid Date: 2024-07-30T00:00:00Z

Links: CVE-2024-42120 - Bugzilla

OpenCVE Enrichment

Updated: 2025-07-13T11:14:13Z

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object