CVE-2024-43904

Summary

CVE-2024-43904 addresses a vulnerability in the Linux kernel related to null pointer dereferencing in the dcn30_apply_idle_power_optimizations function, affecting various AMD display driver products. Without proper null checks for the 'stream' and 'plane' variables, this issue could lead to application crashes, which poses a medium severity risk with potentially high availability impact. Remediation involves applying patches that introduce these null checks to prevent dereferencing of null values. The vulnerability requires local access for exploitation and does not affect confidentiality or integrity. Organizations using affected products should update their systems promptly to mitigate risks associated with this flaw.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.