{"vulnerability": "cve-2024-4390", "sightings": [{"uuid": "a96407c5-aaea-4b38-8f63-313b52bf6f6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43908", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07", "content": "", "creation_timestamp": "2025-08-14T10:00:00.000000Z"}, {"uuid": "6f2eddcc-a8d5-4332-b39a-48450324719a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43907", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07", "content": "", "creation_timestamp": "2025-08-14T10:00:00.000000Z"}, {"uuid": "3fe09162-e387-43ce-a006-88f468dd8095", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-43905", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "05b65062-3970-4681-81ac-b920a37f1d02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-43907", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "8db7b6de-f869-4f1f-bbe5-72c7720e8631", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-43902", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "ba7e54ce-4e83-43b2-b968-d6e28d758349", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-43900", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "12e5f19e-f096-46b2-b68b-9a71cddaeb31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-43904", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "9e841199-1785-40a1-931e-e80b8107a06d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-43901", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "7653d562-f58f-4e6c-b7a0-85edefd62631", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-43909", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "516d7a1a-04d8-493d-a6e1-f52be965b917", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43900", "type": "seen", "source": "https://t.me/cvedetector/4125", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43900 - Cisco Media xc2028 Use-After-Free Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-43900 \nPublished : Aug. 26, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nmedia: xc2028: avoid use-after-free in load_firmware_cb()  \n  \nsyzkaller reported use-after-free in load_firmware_cb() [1].  \nThe reason is because the module allocated a struct tuner in tuner_probe(),  \nand then the module initialization failed, the struct tuner was released.  \nA worker which created during module initialization accesses this struct  \ntuner later, it caused use-after-free.  \n  \nThe process is as follows:  \n  \ntask-6504           worker_thread  \ntuner_probe                             ffff8000d7ca2300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb  \n                           ^  \n      ffff8000d7ca2380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb  \n      ffff8000d7ca2400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb  \n     ==================================================================  \n  \n[2]  \n    Actually, it is allocated for struct tuner, and dvb_frontend is inside. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T13:42:57.000000Z"}, {"uuid": "78193f15-bad1-4902-a14b-7956f77502a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43904", "type": "seen", "source": "https://t.me/cvedetector/4130", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43904 - AMD Display Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2024-43904 \nPublished : Aug. 26, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \ndrm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing  \n  \nThis commit adds null checks for the 'stream' and 'plane' variables in  \nthe dcn30_apply_idle_power_optimizations function. These variables were  \npreviously assumed to be null at line 922, but they were used later in  \nthe code without checking if they were null. This could potentially lead  \nto a null pointer dereference, which would cause a crash.  \n  \nThe null checks ensure that 'stream' and 'plane' are not null before  \nthey are used, preventing potential crashes.  \n  \nFixes the below static smatch checker:  \ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:938 dcn30_apply_idle_power_optimizations() error: we previously assumed 'stream' could be null (see line 922)  \ndrivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn30/dcn30_hwseq.c:940 dcn30_apply_idle_power_optimizations() error: we previously assumed 'plane' could be null (see line 922) \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T13:43:35.000000Z"}, {"uuid": "4fc89df0-55e4-403f-bfc3-1c463e7fd610", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43905", "type": "seen", "source": "https://t.me/cvedetector/4127", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43905 - AMD DRM Null Pointer Dereference Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-43905 \nPublished : Aug. 26, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \ndrm/amd/pm: Fix the null pointer dereference for vega10_hwmgr  \n  \nCheck return value and conduct null pointer handling to avoid null pointer dereference. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T13:42:58.000000Z"}, {"uuid": "b1bf1e73-834b-427e-ba76-57cc8424f272", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43906", "type": "seen", "source": "https://t.me/cvedetector/4126", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43906 - AdmGpu Null Pointer Dereference\", \n  \"Content\": \"CVE ID : CVE-2024-43906 \nPublished : Aug. 26, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \ndrm/admgpu: fix dereferencing null pointer context  \n  \nWhen user space sets an invalid ta type, the pointer context will be empty.  \nSo it need to check the pointer context before using it \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T13:42:57.000000Z"}, {"uuid": "3799bfd0-187e-420a-8dd2-b5c482d6c556", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43909", "type": "seen", "source": "https://t.me/cvedetector/4124", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43909 - AMD GPU Null Pointer Dereference Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-43909 \nPublished : Aug. 26, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \ndrm/amdgpu/pm: Fix the null pointer dereference for smu7  \n  \noptimize the code to avoid pass a null pointer (hwmgr->backend)  \nto function smu7_update_edc_leakage_table. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T13:42:56.000000Z"}, {"uuid": "6671da2f-acf0-4b14-b6eb-d25c4d276abb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43908", "type": "seen", "source": "https://t.me/cvedetector/4123", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43908 - Amalogix AMDGPU Null Pointer Dereference\", \n  \"Content\": \"CVE ID : CVE-2024-43908 \nPublished : Aug. 26, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \ndrm/amdgpu: Fix the null pointer dereference to ras_manager  \n  \nCheck ras_manager before using it \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T13:42:52.000000Z"}, {"uuid": "d19f582c-e58c-4e44-bcb9-da582a99146a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43907", "type": "seen", "source": "https://t.me/cvedetector/4109", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43907 - AMDGPU Null Pointer Dereference Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-43907 \nPublished : Aug. 26, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \ndrm/amdgpu/pm: Fix the null pointer dereference in apply_state_adjust_rules  \n  \nCheck the pointer value to fix potential null pointer  \ndereference \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T13:42:33.000000Z"}]}