CVE-2023-52815

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu/vkms: fix a possible null pointer dereference

In amdgpu_vkms_conn_get_modes(), the return value of drm_cvt_mode() is assigned to mode, which will lead to a NULL pointer dereference on failure of drm_cvt_mode(). Add a check to avoid null pointer dereference.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd38ceaf99ed015f2a0b9af3499791bd3a3daae21 < eaa03ea366c85ae3cb69c8d4bbc67c8bc2167a27affected
LinuxLinuxd38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 33fb1a555354bd593f785935ddcb5d9dd4d3847faffected
LinuxLinuxd38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 8c6c85a073768df68c1a3fea143d013a38c66d34affected
LinuxLinuxd38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 70f831f21155c692bb336c434936fd6f24f3f81aaffected
LinuxLinuxd38ceaf99ed015f2a0b9af3499791bd3a3daae21 < cd90511557fdfb394bb4ac4c3b539b007383914caffected
LinuxLinux4.2affected
LinuxLinux0 < 4.2unaffected
LinuxLinux5.15.140 <= 5.15.*unaffected
LinuxLinux6.1.64 <= 6.1.*unaffected
LinuxLinux6.5.13 <= 6.5.*unaffected
LinuxLinux6.6.3 <= 6.6.*unaffected
LinuxLinux6.7 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References