Bug 2460636 (CVE-2026-31460)

Summary: CVE-2026-31460 kernel: drm/amd/display: check if ext_caps is valid in BL setup
Product: [Other] Security Response Reporter: OSIDB Bzimport <bzimport>
Component: vulnerabilityAssignee: Product Security <prodsec-ir-bot>
Status: NEW --- QA Contact:
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: unspecifiedKeywords: Security
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: ---
Doc Text:
A flaw was found in the `drm/amd/display` component of the Linux kernel. This vulnerability occurs because the system attempts to access extended backlight capabilities without first verifying if the pointer to these capabilities is valid, specifically when dealing with LVDS connectors. An attacker could potentially trigger a system crash, leading to a Denial of Service (DoS).
 Story Points: ---
Clone Of: Environment:
Last Closed: Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description OSIDB Bzimport 2026-04-22 15:02:13 UTC 
In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: check if ext_caps is valid in BL setup

LVDS connectors don't have extended backlight caps so check
if the pointer is valid before accessing it.

(cherry picked from commit 3f797396d7f4eb9bb6eded184bbc6f033628a6f6)
Comment 1 Keith Grant 2026-04-22 17:48:59 UTC 
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2026042251-CVE-2026-31460-2405@gregkh/T