AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2024-46712: In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Disable coherent dumb buffers without 3

mediumvulnerability

security

Source: NVD/CVE DatabaseSeptember 13, 2024CVE-2024-46712

Summary

A vulnerability in the Linux kernel's vmwgfx driver (which manages graphics for virtual machines) allowed coherent dumb buffers (memory areas used for graphics that stay synchronized between the virtual machine and host) to be used even when 3D graphics acceleration was disabled, wasting resources and causing graphics memory to run out on low-memory systems. The fix ensures these buffers are only created when 3D graphics support is actually enabled.

Solution / Mitigation

Disable coherent dumb buffers when 3D graphics are not enabled. The kernel patch resolves this by ensuring coherent dumb buffers are only used on configurations with 3D enabled.

Vulnerability Details

CVSS Score

5.5(medium)

EPSS (30-day exploit probability)

EPSS: 0.0%

Classification

Attack SophisticationModerate

Original source: https://nvd.nist.gov/vuln/detail/CVE-2024-46712

First tracked: February 15, 2026 at 08:52 PM

Classified by LLM (prompt v3) · confidence: 95%