CVE-2023-53545

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: unmap and remove csa_va properly

Root PD BO should be reserved before unmap and remove a bo_va from VM otherwise lockdep will complain.

v2: check fpriv->csa_va is not NULL instead of amdgpu_mcbp (christian)

[14616.936827] WARNING: CPU: 6 PID: 1711 at drivers/gpu/drm/amd/amdgpu/amdgpu_vm.c:1762 amdgpu_vm_bo_del+0x399/0x3f0 [amdgpu] [14616.937096] Call Trace: [14616.937097] <TASK> [14616.937102] amdgpu_driver_postclose_kms+0x249/0x2f0 [amdgpu] [14616.937187] drm_file_free+0x1d6/0x300 [drm] [14616.937207] drm_close_helper.isra.0+0x62/0x70 [drm] [14616.937220] drm_release+0x5e/0x100 [drm] [14616.937234] __fput+0x9f/0x280 [14616.937239] ____fput+0xe/0x20 [14616.937241] task_work_run+0x61/0x90 [14616.937246] exit_to_user_mode_prepare+0x215/0x220 [14616.937251] syscall_exit_to_user_mode+0x2a/0x60 [14616.937254] do_syscall_64+0x48/0x90 [14616.937257] entry_SYSCALL_64_after_hwframe+0x63/0xcd

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 1bc35e637a81dac5f5155e83a277c26708c4d4d7affected
LinuxLinuxd38ceaf99ed015f2a0b9af3499791bd3a3daae21 < ae325b245208394279a1dc412c831ebd71befb0daffected
LinuxLinuxd38ceaf99ed015f2a0b9af3499791bd3a3daae21 < a3a96bf843c356d1d9b2d7f6d0784b6ee28ca9d0affected
LinuxLinuxd38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 5daff15cd013422bc6d1efcfe82b586800025384affected
LinuxLinux4.2affected
LinuxLinux0 < 4.2unaffected
LinuxLinux5.15.209 <= 5.15.*unaffected
LinuxLinux6.1.167 <= 6.1.*unaffected
LinuxLinux6.4.12 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

References