An issue exists in drm_load_edid_firmware in drivers/gpu/drm/drm_edid_load.c in the Linux kernel up to and including 5.1.5. There is an unchecked kstrdup of fwstr, which might allow an malicious user to cause a denial of service (NULL pointer dereference and system crash). NOTE: The vendor disputes this issues as not being a vulnerability because kstrdup() returning NULL is handled sufficiently and there is no chance for a NULL pointer dereference
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel |