CVE-2024-49897

medium

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check phantom_stream before it is used dcn32_enable_phantom_stream can return null, so returned value must be checked before used. This fixes 1 NULL_RETURNS issue reported by Coverity.

References

https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html

https://git.kernel.org/stable/c/db1d7e1794fed62ee16d6a72a85997bb069e2e27

https://git.kernel.org/stable/c/d247af7c5dbf143ad6be8179bb1550e76d6af57e

https://git.kernel.org/stable/c/3ba1219e299ab5462b5cb374c2fa2a67af0ea190

https://git.kernel.org/stable/c/3718a619a8c0a53152e76bb6769b6c414e1e83f4

https://git.kernel.org/stable/c/1decf695ce08e23d9ded6ce83d121b2282ce9899

Details

Source: Mitre, NVD

Published: 2024-10-21

Updated: 2025-11-03

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00039