Login Sign Up

CVE-2024-46804

7.8 HIGH

📋 TL;DR

This CVE addresses an array index validation vulnerability in the AMD display driver within the Linux kernel. An attacker could exploit this to cause memory corruption or potentially execute arbitrary code with kernel privileges. Systems running affected Linux kernel versions with AMD graphics hardware are vulnerable.

💻 Affected Systems

Products:
  • Linux kernel with AMD display driver (drm/amd/display)
Versions: Specific kernel versions containing the vulnerable code (check git commits for exact ranges)
Operating Systems: Linux distributions with affected kernel versions
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects systems with AMD graphics hardware using the vulnerable display driver component.

📦 What is this software?

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Kernel privilege escalation leading to full system compromise, data theft, or persistent backdoor installation.

🟠

Likely Case

Kernel panic or system crash causing denial of service, potentially requiring physical access to restart.

🟢

If Mitigated

No impact if patched or if system lacks AMD graphics hardware.

🌐 Internet-Facing: LOW - Requires local access or ability to execute code on the system.
🏢 Internal Only: MEDIUM - Local attackers or malicious insiders could exploit this vulnerability.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires local access and knowledge of kernel memory layout. No public exploits known at this time.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Kernel versions containing commits: 0ee4387c5a4b57ec733c3fb4365188d5979cd9c7, 2a63c90c7a90ab2bd23deebc2814fc5b52abf6d2, 4e70c0f5251c25885c31ee84a31f99a01f7cf50e, 8b5ccf3d011969417be653b5a145c72dbd30472c, a3b5ee22a9d3a30045191da5678ca8451ebaea30

Vendor Advisory: https://git.kernel.org/stable/c/0ee4387c5a4b57ec733c3fb4365188d5979cd9c7

Restart Required: Yes

Instructions:

1. Update Linux kernel to patched version from your distribution's repositories. 2. Reboot system to load new kernel. 3. Verify kernel version after reboot.

🔧 Temporary Workarounds

Disable AMD display driver

linux

Remove or blacklist the AMD display driver module to prevent loading

echo 'blacklist amdgpu' >> /etc/modprobe.d/blacklist-amd.conf
update-initramfs -u
reboot

🧯 If You Can't Patch

  • Restrict local user access to systems with AMD graphics hardware
  • Implement strict privilege separation and limit users who can execute code on affected systems

🔍 How to Verify

Check if Vulnerable:

Check if system has AMD graphics and kernel version matches affected range. Use: lspci | grep -i amd && uname -r

Check Version:

uname -r

Verify Fix Applied:

Verify kernel version after update and check that git commit containing fix is present in kernel source

📡 Detection & Monitoring

Log Indicators:

  • Kernel oops messages
  • System crashes/panics related to display driver
  • dmesg errors mentioning amdgpu or display driver

Network Indicators:

  • None - local vulnerability only

SIEM Query:

source="kernel" AND ("amdgpu" OR "display" OR "drm") AND ("panic" OR "oops" OR "segfault")

📊 Metadata

CVE ID: CVE-2024-46804
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-129
Published: September 27, 2024
Last Updated: November 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-46804, you might also want to check these:

CVE-2020-27483 9.9

This vulnerability in Garmin Forerunner 235 devices allows attackers to potentially execute arbitrar...

Same vulnerability type (CWE-129)
CVE-2020-27485 9.9

This vulnerability in Garmin Forerunner 235 devices allows malicious ConnectIQ store applications to...

Same vulnerability type (CWE-129)
CVE-2021-38563 9.8

This vulnerability in Foxit PDF software allows attackers to trigger memory corruption through malfo...

Same vulnerability type (CWE-129)