CVE-2024-49894: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-49894 addresses a buffer overflow vulnerability in the Linux kernel's AMD display driver, specifically in the cm_helper_translate_curve_to_degamma_hw_format function. The vulnerability was discovered by the smatch static analysis tool and reported on July 20, 2024. The issue affects multiple versions of the Linux kernel, including versions up to 5.10.227, 5.11 to 5.15.168, 5.16 to 6.1.113, 6.2 to 6.6.55, and 6.7 and later versions (NVD).

The vulnerability occurs when the index 'i' exceeds the number of transfer function points (TRANSFERFUNCPOINTS) in the cm_helper_translate_curve_to_degamma_hw_format function, potentially leading to buffer overflow conditions in the red, green, and blue color channels. The issue was identified in the file drivers/gpu/drm/amd/amdgpu/../display/dc/dcn10/dcn10cmcommon.c at lines 594-596. The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (NVD).

The buffer overflow vulnerability could potentially lead to memory corruption, allowing an attacker with local access to achieve high impacts on confidentiality, integrity, and availability of the affected system. The vulnerability affects the color management functionality in AMD's display driver, which could potentially be exploited to cause system instability or execute arbitrary code (NVD).

A fix has been implemented that adds a bounds check to ensure the index 'i' does not exceed TRANSFERFUNCPOINTS before accessing the transfer function points. If the index is out of bounds, the function now returns false to indicate an error. The fix has been merged into the Linux kernel and is available through various distribution updates (Kernel Patch).