CVE-2023-52825

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amdkfd: Fix a race condition of vram buffer unref in svm code

prange->svm_bo unref can happen in both mmu callback and a callback after migrate to system ram. Both are async call in different tasks. Sync svm_bo unref operation to avoid random "use-after-free".

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe49fe4040a10c1cd3b215c511f658d15aa7c8be9 < 7d43cdd22cd81a2b079e864c4321b9aba4c6af34affected
LinuxLinuxe49fe4040a10c1cd3b215c511f658d15aa7c8be9 < 50f35a907c4f9ed431fd3dbb8b871ef1cbb0718eaffected
LinuxLinuxe49fe4040a10c1cd3b215c511f658d15aa7c8be9 < c772eacbd6d0845fc922af8716bb9d29ae27b8cfaffected
LinuxLinuxe49fe4040a10c1cd3b215c511f658d15aa7c8be9 < fc0210720127cc6302e6d6f3de48f49c3fcf5659affected
LinuxLinuxe49fe4040a10c1cd3b215c511f658d15aa7c8be9 < 709c348261618da7ed89d6c303e2ceb9e453ba74affected
LinuxLinux5.14affected
LinuxLinux0 < 5.14unaffected
LinuxLinux5.15.140 <= 5.15.*unaffected
LinuxLinux6.1.64 <= 6.1.*unaffected
LinuxLinux6.5.13 <= 6.5.*unaffected
LinuxLinux6.6.3 <= 6.6.*unaffected
LinuxLinux6.7 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References