NVD Vulnerability Detail

CVE-2024-49913

Summary	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream This commit addresses a null pointer dereference issue in the `commit_planes_for_stream` function at line 4140. The issue could occur when `top_pipe_to_program` is null. The fix adds a check to ensure `top_pipe_to_program` is not null before accessing its stream_res. This prevents a null pointer dereference. Reported by smatch: drivers/gpu/drm/amd/amdgpu/../display/dc/core/dc.c:4140 commit_planes_for_stream() error: we previously assumed 'top_pipe_to_program' could be null (see line 3906)
Publication Date	Oct. 22, 2024, 3:15 a.m.
Registration Date	Oct. 22, 2024, 12:03 p.m.
Last Update	Oct. 24, 2024, 11:39 p.m.

Affected software configurations

Related information, measures and tools

No	URL	タグ
1	https://git.kernel.org/stable/c/1ebfa6663807c144be8c8b6727375012409d2356	Patch
2	https://git.kernel.org/stable/c/8ab59527852a6f7780aad6185729550ca0569122	Patch
3	https://git.kernel.org/stable/c/40193ff73630adf76bc0d82398f7d90fb576dba4	Patch
4	https://git.kernel.org/stable/c/e47e563c6f0db7d792a559301862c19ead0dfc2f	Patch
5	https://git.kernel.org/stable/c/3929e382e4758aff42da0102a60d13337c99d3b8	Patch
6	https://git.kernel.org/stable/c/73efd2a611b62fee71a7b7f27d9d08bb60da8a72	Patch
7	https://git.kernel.org/stable/c/66d71a72539e173a9b00ca0b1852cbaa5f5bf1ad	Patch

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-476	NULL ポインタデリファレンス	https://cwe.mitre.org/data/definitions/476.html

JVN Vulnerability Information

Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性

Title	Linux の Linux Kernel における NULL ポインタデリファレンスに関する脆弱性
Summary	Linux の Linux Kernel には、NULL ポインタデリファレンスに関する脆弱性が存在します。
Possible impacts	サービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	July 27, 2024, midnight
Registration Date	Oct. 25, 2024, 4:15 p.m.
Last Update	Aug. 20, 2025, 5:04 p.m.

Affected System

Linux

Linux Kernel 5.10.227 未満

Linux Kernel 5.11 以上 5.15.168 未満

Linux Kernel 5.16 以上 6.1.113 未満

Linux Kernel 6.11 以上 6.11.3 未満

Linux Kernel 6.2 以上 6.6.55 未満

Linux Kernel 6.7 以上 6.10.14 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2024-49913	https://www.cve.org/CVERecord?id=CVE-2024-49913
National Vulnerability Database (NVD)
2	CVE-2024-49913	https://nvd.nist.gov/vuln/detail/CVE-2024-49913

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-476	http://cwe.mitre.org/data/definitions/476.html

ベンダー情報

No	Name	URL
Kernel.org git repositories
1	drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (1ebfa66)	https://git.kernel.org/stable/c/1ebfa6663807c144be8c8b6727375012409d2356
2	drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (3929e38)	https://git.kernel.org/stable/c/3929e382e4758aff42da0102a60d13337c99d3b8
3	drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (40193ff)	https://git.kernel.org/stable/c/40193ff73630adf76bc0d82398f7d90fb576dba4
4	drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (66d71a7)	https://git.kernel.org/stable/c/66d71a72539e173a9b00ca0b1852cbaa5f5bf1ad
5	drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (73efd2a)	https://git.kernel.org/stable/c/73efd2a611b62fee71a7b7f27d9d08bb60da8a72
6	drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (8ab5952)	https://git.kernel.org/stable/c/8ab59527852a6f7780aad6185729550ca0569122
7	drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream (e47e563)	https://git.kernel.org/stable/c/e47e563c6f0db7d792a559301862c19ead0dfc2f
Linux Kernel
8	Linux Kernel Archives	https://www.kernel.org

その他

No	Name	URL
ICS-CERT ADVISORY
1	ICSA-25-226-07	https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07
JVN
2	JVNVU#92169998	https://jvn.jp/vu/JVNVU92169998/index.html

Change Log

No	Changed Details	Date of change
1	[2024年10月25日] 掲載	Oct. 25, 2024, 10:51 a.m.
2	[2025年08月20日] 参考情報：JVN (JVNVU#92169998) を追加参考情報：ICS-CERT ADVISORY (ICSA-25-226-07) を追加	Aug. 20, 2025, 5:03 p.m.