How severe is CVE-2024-56666?

CVE-2024-56666 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2024-56666

Name: linux_kernel
Author: linux

5.5MEDIUM

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Dereference null return value In the function pqm_uninit there is a call-assignment of "pdd = kfd_get_process_device_d

Published: 12/27/2024Updated: 10/1/2025

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Dereference null return value In the function pqm_uninit there is a call-assignment of "pdd = kfd_get_process_device_data" which could be null, and this value was later dereferenced without checking.

AI AnalysisPowered by AI

Affected Products

linuxlinux_kernel

6.13

linuxlinux_kernel

6.13

References

https://git.kernel.org/stable/c/768442d918932c4da09003f1fd6be1750b93a4ba
Patch
https://git.kernel.org/stable/c/a592bb19abdc2072875c87da606461bfd7821b08
Patch