CVE-2022-48990

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: fix use-after-free during gpu recovery

[Why] [ 754.862560] refcount_t: underflow; use-after-free. [ 754.862898] Call Trace: [ 754.862903] <TASK> [ 754.862913] amdgpu_job_free_cb+0xc2/0xe1 [amdgpu] [ 754.863543] drm_sched_main.cold+0x34/0x39 [amd_sched]

[How] The fw_fence may be not init, check whether dma_fence_init is performed before job free

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxf6a3f66063ca39e7ee5fcee59e889c5ec4de9dc0 < d2a89cd942edd50c1e652004fd64019be78b0a96affected
LinuxLinuxf6a3f66063ca39e7ee5fcee59e889c5ec4de9dc0 < 3cb93f390453cde4d6afda1587aaa00e75e09617affected
LinuxLinux6.0affected
LinuxLinux0 < 6.0unaffected
LinuxLinux6.0.13 <= 6.0.*unaffected
LinuxLinux6.1 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References