CVE-2022-50781

Summary

In the Linux kernel, the following vulnerability has been resolved:

amdgpu/pm: prevent array underflow in vega20_odn_edit_dpm_table()

In the PP_OD_EDIT_VDDC_CURVE case the "input_index" variable is capped at 2 but not checked for negative values so it results in an out of bounds read. This value comes from the user via sysfs.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd5bf26539494d16dfabbbea0854a47d202ea15c0 < 4d3dc0de9c46d9f73be6bac026e40b893e37ea21affected
LinuxLinuxd5bf26539494d16dfabbbea0854a47d202ea15c0 < 85273b4a7076ed5328c8ace02234e4e7e10972d5affected
LinuxLinuxd5bf26539494d16dfabbbea0854a47d202ea15c0 < f289a38df0da4cfe4b50d04b1b9c3bc646fecd57affected
LinuxLinuxd5bf26539494d16dfabbbea0854a47d202ea15c0 < a03625ad11b50429930f4c491d6c97e70f2ba89aaffected
LinuxLinuxd5bf26539494d16dfabbbea0854a47d202ea15c0 < 8084bd0a64e278314b733993f388d83a86aa1183affected
LinuxLinuxd5bf26539494d16dfabbbea0854a47d202ea15c0 < d27252b5706e51188aed7647126e44dcf9e940c1affected
LinuxLinux4.20affected
LinuxLinux0 < 4.20unaffected
LinuxLinux5.4.229 <= 5.4.*unaffected
LinuxLinux5.10.163 <= 5.10.*unaffected
LinuxLinux5.15.86 <= 5.15.*unaffected
LinuxLinux6.0.16 <= 6.0.*unaffected
LinuxLinux6.1.2 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

References