VYPR
High severity7.8NVD Advisory· Published Jul 30, 2024· Updated Jun 17, 2026

CVE-2024-42118

CVE-2024-42118

Description

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Do not return negative stream id for array

[WHY] resource_stream_to_stream_idx returns an array index and it return -1 when not found; however, -1 is not a valid array index number.

[HOW] When this happens, call ASSERT(), and return a zero instead.

This fixes an OVERRUN and an NEGATIVE_RETURNS issues reported by Coverity.

Affected products

2
  • Linux/Kernelllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 4.15

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.