CVE-2024-56776

drm/sti: avoid potential dereference of error pointers

Description

In the Linux kernel, the following vulnerability has been resolved: drm/sti: avoid potential dereference of error pointers The return value of drm_atomic_get_crtc_state() needs to be checked. To avoid use of error pointer 'crtc_state' in case of the failure.

References

Link	Tags
https://git.kernel.org/stable/c/e98ff67f5a68114804607de549c2350d27628fc7	patch
https://git.kernel.org/stable/c/40725c5fabee804fecce41d4d5c5bae80c45e1c4	patch
https://git.kernel.org/stable/c/8ab73ac97c0fa528f66eeccd9bb53eb6eb7d20dc	patch
https://git.kernel.org/stable/c/f67786293193cf01ebcc6fdbcbd1587b24f52679	patch
https://git.kernel.org/stable/c/831214f77037de02afc287eae93ce97f218d8c04	patch

Frequently Asked Questions

What is the severity of CVE-2024-56776?: CVE-2024-56776 has been scored as a medium severity vulnerability.
How to fix CVE-2024-56776?: To fix CVE-2024-56776, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-56776 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2024-56776 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-56776?: CVE-2024-56776 affects Linux Linux, Linux Linux.

This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.

Description

Category

CWE-754 – Improper Check for Unusual or Exceptional Conditions

References

Frequently Asked Questions