CVE-2024-36960
Published Jun 3, 2024
Last updated 11 days ago
Overview
- Description
- In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix invalid reads in fence signaled events Correctly set the length of the drm_event to the size of the structure that's actually used. The length of the drm_event was set to the parent structure instead of to the drm_vmw_event_fence which is supposed to be read. drm_read uses the length parameter to copy the event to the user space thus resuling in oob reads.
- Source
- 416baaa9-dc9f-4396-8d5f-8c081fb06d67
- NVD status
- Awaiting Analysis
Weaknesses
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-125
Social media
- Hype score
- Not currently trending