Updated: 2026-02-27 00:54:07.085828
Description:
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add array index check for hdcp ddc access [Why] Coverity reports OVERRUN warning. Do not check if array index valid. [How] Check msg_id valid and valid array index.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | 0.0 | |
| CVSS Version 3.x | HIGH | 7.8 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| Oracle Linux 7 ELS | kernel-uek | 5.4.17 | 7.8 | HIGH | Not Vulnerable | 2026-02-21 22:25:01 | CVE-2024-46804 only affects the AMD display (amdgpu DC) HDCP DDC code path, which is compiled only w... | |
| RHEL 7 ELS | kernel | 3.10.0 | 7.8 | HIGH | Not Vulnerable | 2025-05-28 00:25:37 | CVE-2024-46804 is limited to the AMDGPU Display Core (drm/amd/display) HDCP DDC code path, which is ... | |
| Ubuntu 16.04 ELS | linux-hwe | 4.15.0 | 7.8 | HIGH | Not Vulnerable | 2024-10-08 06:18:32 | Not affected. CVE‑2024‑46804 targets AMD Display Core’s HDCP DDC code in drivers/gpu/drm/amd/d... | |
| Ubuntu 16.04 ELS | linux | 4.4.0 | 7.8 | HIGH | Not Vulnerable | 2024-10-08 06:18:27 | Not affected. CVE‑2024‑46804 targets AMD Display Core’s HDCP DDC code in drivers/gpu/drm/amd/d... | |
| Ubuntu 18.04 ELS | linux | 4.15.0 | 7.8 | HIGH | Not Vulnerable | 2024-10-08 06:18:27 | Not affected: The defective HDCP DDC handling in drm/amd/display was introduced upstream in Linux 5.... |