Login Sign Up

CVE-2024-50003

5.5 MEDIUM
Denial of Service

📋 TL;DR

A NULL pointer dereference vulnerability in the Linux kernel's AMD display driver can cause system hangs when resuming from suspend with Thunderbolt monitors connected. This affects Linux systems using AMD graphics with Thunderbolt displays. The vulnerability occurs during resume procedures when HPD (Hot Plug Detect) triggers before proper initialization.

💻 Affected Systems

Products:
  • Linux kernel with AMD display driver
Versions: Specific kernel versions with vulnerable AMD display driver code
Operating Systems: Linux distributions with affected kernel versions
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects systems with AMD graphics and Thunderbolt monitors during suspend/resume cycles

📦 What is this software?

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system hang requiring hard reboot, potential data loss or corruption

🟠

Likely Case

System instability during resume from suspend, requiring manual intervention

🟢

If Mitigated

Minor inconvenience requiring monitor reconnection or system restart

🌐 Internet-Facing: LOW - Requires physical access or local execution
🏢 Internal Only: MEDIUM - Could affect workstation availability for users with Thunderbolt monitors

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: NO
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Requires physical access to connect Thunderbolt monitor and trigger suspend/resume cycle

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Kernel versions with commit 453f86a26945207a16b8f66aaed5962dc2b95b85 or later

Vendor Advisory: https://git.kernel.org/stable/c/52d4e3fb3d340447dcdac0e14ff21a764f326907

Restart Required: Yes

Instructions:

1. Update Linux kernel to patched version
2. Reboot system
3. Verify kernel version includes the fix commit

🔧 Temporary Workarounds

Disable Thunderbolt monitor during suspend

linux

Disconnect Thunderbolt monitors before system suspend

Disable suspend functionality

linux

Prevent system from entering suspend state

systemctl mask sleep.target suspend.target hibernate.target hybrid-sleep.target

🧯 If You Can't Patch

  • Avoid using Thunderbolt monitors with affected systems
  • Disable system suspend functionality entirely

🔍 How to Verify

Check if Vulnerable:

Check if system has AMD graphics, Thunderbolt monitor, and experiences hangs during resume

Check Version:

uname -r

Verify Fix Applied:

Test suspend/resume cycle with Thunderbolt monitor connected after kernel update

📡 Detection & Monitoring

Log Indicators:

  • Kernel panic messages
  • AMD display driver errors
  • System hang during resume

SIEM Query:

Search for kernel panic or AMD display driver errors in system logs

📊 Metadata

CVE ID: CVE-2024-50003
CVSS v3 Score: 5.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-476
Published: October 21, 2024
Last Updated: November 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-50003, you might also want to check these:

CVE-2022-36648 10.0

This CVE describes a vulnerability in QEMU's hardware emulation where a malformed program executed i...

Same vulnerability type (CWE-476)
CVE-2019-20914 9.8

This vulnerability in GNU LibreDWG is a NULL pointer dereference that can cause application crashes ...

Same vulnerability type (CWE-476)
CVE-2022-30592 9.8

This vulnerability in LiteSpeed QUIC (LSQUIC) before version 3.1.0 involves improper handling of MAX...

Same vulnerability type (CWE-476)