CVE-2024-26767

Advisory lineage Upstream: 0 Downstream: 22

Downstream

DEBIAN-CVE-2024-26767 DLA-4193-1 DSA-5900-1 RHSA-2024:9315 SUSE-SU-2024:2571-1 SUSE-SU-2024:2896-1

Modified

Published: 03 Apr 2024, 17:00

Last modified:11 May 2026, 20:03

Vulnerability Summary

Overall Risk (default)

low

22/100

CVSS Score

5.5 MEDIUM

v3.1 (nvd)

EPSS Score

<0.01% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

03 Apr 2024, 17:00

Published

Vulnerability first disclosed

11 May 2026, 20:03

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fixed integer types and null check locations [why]: issues fixed: - comparison with wider integer type in loop condition which can cause infinite loops - pointer dereference before null check

CVSS Metrics

v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.01%• Percentile: 1%

Techniques & Countermeasures

CWE-476•NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
CWE-835•Loop with Unreachable Exit Condition ('Infinite Loop')
The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

Affected Systems

linux•linux
≥ 7ef414375fcc001b6d0745d2931d91c9c736e18d, < 070fda699dfdce560755379bc428d9edada7a54e | ≥ 7ef414375fcc001b6d0745d2931d91c9c736e18d, < 71783d1ff65204d69207fd156d4b2eb1d3882375 | ≥ 7ef414375fcc001b6d0745d2931d91c9c736e18d, < beea9ab9080cd2ef46296070bb327af066ee09d7 | ≥ 7ef414375fcc001b6d0745d2931d91c9c736e18d, < 0484e05d048b66d01d1f3c1d2306010bb57d8738 | 6.1
linux•linux_kernel
< 6.6.19 | ≥ 6.7, < 6.7.7 | 6.8:rc1 | 6.8:rc2 | 6.8:rc3 | 6.8:rc4