Vulnerability Details CVE-2024-26911
In the Linux kernel, the following vulnerability has been resolved:
drm/buddy: Fix alloc_range() error handling code
Few users have observed display corruption when they boot
the machine to KDE Plasma or playing games. We have root
caused the problem that whenever alloc_range() couldn't
find the required memory blocks the function was returning
SUCCESS in some of the corner cases.
The right approach would be if the total allocated size
is less than the required size, the function should
return -ENOSPC.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.9%
CVSS Severity
CVSS v3 Score 3.3
References
Products affected by CVE-2024-26911
-
cpe:2.3:o:linux:linux_kernel:6.7.1
-
cpe:2.3:o:linux:linux_kernel:6.7.2
-
cpe:2.3:o:linux:linux_kernel:6.7.3
-
cpe:2.3:o:linux:linux_kernel:6.7.4
-
cpe:2.3:o:linux:linux_kernel:6.7.5