You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2024 42066
About this tag
CVE-2024-42066 is a medium-severity vulnerability in the Linux kernel's DRM XE driver, specifically an arithmetic overflow in page size calculation. The flaw occurs when tbo->page_alignment is shifted without a 64-bit cast, potentially causing an integer overflow that leads to incorrect page sizes and kernel faults. This local, availability-focused defect has a CVSSv3 base score of 5.5. A patch addresses the issue by explicitly casting to u64 before the bit shift. On WindowsForum.com, discussions cover the technical details of the fix, its impact on system stability, and comparisons to similar kernel vulnerabilities.
The Linux kernel patch credited to CVE‑2024‑42066 fixes a subtle but important arithmetic bug in the DRM XE driver: the code now explicitly casts tbo->page_alignment to a 64‑bit unsigned type (u64) before performing a bit shift used to compute min_page_size, removing a possible integer overflow...