CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-43909: drm/amdgpu/pm: Fix the null pointer dereference for smu7

5.5 CVSS

Description

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu/pm: Fix the null pointer dereference for smu7

optimize the code to avoid pass a null pointer (hwmgr->backend)
to function smu7_update_edc_leakage_table.

Classification

CVE ID: CVE-2024-43909

CVSS Base Severity: MEDIUM

CVSS Base Score: 5.5

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.07% (probability of being exploited)

EPSS Percentile: 20.84% (scored less or equal to compared to others)

EPSS Date: 2025-06-02 (when was this score calculated)

Stakeholder-Specific Vulnerability Categorization (SSVC)

SSVC Exploitation: none

SSVC Technical Impact: partial

SSVC Automatable: false

References

https://nvd.nist.gov/vuln/detail/CVE-2024-43909
https://git.kernel.org/stable/c/37b9df457cbcf095963d18f17d6cb7dfa0a03fce
https://git.kernel.org/stable/c/1b8aa82b80bd947b68a8ab051d960a0c7935e22d
https://git.kernel.org/stable/c/09544cd95c688d3041328a4253bd7514972399bb
https://git.kernel.org/stable/c/7f56f050f02c27ed89cce1ea0c04b34abce32751
https://git.kernel.org/stable/c/c02c1960c93eede587576625a1221205a68a904f

Timeline