CVE-2024-45015: 
Linux Kernel vulnerability analysis and mitigation

A vulnerability in the Linux kernel's DRM (Direct Rendering Manager) MSM/DPU driver has been identified and assigned CVE-2024-45015. The issue affects Linux kernel versions from 4.19 up to (excluding) 6.6.48, and versions from 6.7 up to (excluding) 6.10.7, as well as release candidates 6.11-rc1 through 6.11-rc4. The vulnerability stems from a NULL pointer dereference in the DPU encoder's connector assignment logic (NVD).

The vulnerability occurs in cases where the CRTC's connectors_changed flag is set without enable/active being toggled, resulting in an atomic_enable() call followed by an atomic_disable() but without an atomic_mode_set(). This sequence leads to a NULL pointer access in the dpu_encoder_get_drm_fmt() call during atomic_enable(), as the dpu_encoder's connector is cleared in atomic_disable() but not properly reassigned due to the missing atomic_mode_set() call. The issue has been assigned a CVSS v3.1 base score of 5.5 (Medium) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (Kernel Patch).

The vulnerability can result in a NULL pointer dereference in the Linux kernel's DRM MSM/DPU driver, potentially leading to a system crash or denial of service condition. The impact is limited to local attacks and primarily affects system availability, with no direct impact on confidentiality or integrity (NVD).

The vulnerability has been fixed by moving the dpu_encoder's connector assignment to atomic_enable() and using drm_atomic_get_new_connector_for_encoder() to get the connector from the atomic_state. The fix has been implemented in the kernel patch and is available in updated kernel versions. Users should update their Linux kernel to the latest patched version (Kernel Patch).