CVE - CVE-2024-36969

CVE-ID
CVE-2024-36969	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix division by zero in setup_dsc_config When slice_height is 0, the division by slice_height in the calculation of the number of slices will cause a division by zero driver crash. This leaves the kernel in a state that requires a reboot. This patch adds a check to avoid the division by zero. The stack trace below is for the 6.8.4 Kernel. I reproduced the issue on a Z16 Gen 2 Lenovo Thinkpad with a Apple Studio Display monitor connected via Thunderbolt. The amdgpu driver crashed with this exception when I rebooted the system with the monitor connected. kernel: ? die (arch/x86/kernel/dumpstack.c:421 arch/x86/kernel/dumpstack.c:434 arch/x86/kernel/dumpstack.c:447) kernel: ? do_trap (arch/x86/kernel/traps.c:113 arch/x86/kernel/traps.c:154) kernel: ? setup_dsc_config (drivers/gpu/drm/amd/amdgpu/../display/dc/dsc/dc_dsc.c:1053) amdgpu kernel: ? do_error_trap (./arch/x86/include/asm/traps.h:58 arch/x86/kernel/traps.c:175) kernel: ? setup_dsc_config (drivers/gpu/drm/amd/amdgpu/../display/dc/dsc/dc_dsc.c:1053) amdgpu kernel: ? exc_divide_error (arch/x86/kernel/traps.c:194 (discriminator 2)) kernel: ? setup_dsc_config (drivers/gpu/drm/amd/amdgpu/../display/dc/dsc/dc_dsc.c:1053) amdgpu kernel: ? asm_exc_divide_error (./arch/x86/include/asm/idtentry.h:548) kernel: ? setup_dsc_config (drivers/gpu/drm/amd/amdgpu/../display/dc/dsc/dc_dsc.c:1053) amdgpu kernel: dc_dsc_compute_config (drivers/gpu/drm/amd/amdgpu/../display/dc/dsc/dc_dsc.c:1109) amdgpu After applying this patch, the driver no longer crashes when the monitor is connected and the system is rebooted. I believe this is the same issue reported for 3113.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/130afc8a886183a94cf6eab7d24f300014ff87ba URL:https://git.kernel.org/stable/c/130afc8a886183a94cf6eab7d24f300014ff87ba MISC:https://git.kernel.org/stable/c/308de6be0c9c7ba36915c0d398e771725c0ea911 URL:https://git.kernel.org/stable/c/308de6be0c9c7ba36915c0d398e771725c0ea911 MISC:https://git.kernel.org/stable/c/7e4f50dfc98c49b3dc6875a35c3112522fb25639 URL:https://git.kernel.org/stable/c/7e4f50dfc98c49b3dc6875a35c3112522fb25639 MISC:https://git.kernel.org/stable/c/91402e0e5de9124a3108db7a14163fcf9a6d322f URL:https://git.kernel.org/stable/c/91402e0e5de9124a3108db7a14163fcf9a6d322f MISC:https://git.kernel.org/stable/c/a32c8f951c8a456c1c251e1dcdf21787f8066445 URL:https://git.kernel.org/stable/c/a32c8f951c8a456c1c251e1dcdf21787f8066445 MISC:https://git.kernel.org/stable/c/f187fcbbb8f8bf10c6687f0beae22509369f7563 URL:https://git.kernel.org/stable/c/f187fcbbb8f8bf10c6687f0beae22509369f7563
Assigning CNA
kernel.org
Date Record Created
20240530	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20240530)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)