CVE-2023-53707

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: Fix integer overflow in amdgpu_cs_pass1

The type of size is unsigned int, if size is 0x40000000, there will be an integer overflow, size will be zero after size *= sizeof(uint32_t), will cause uninitialized memory to be referenced later.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 9f55d300541cb5b435984d269087810581580b00affected
LinuxLinuxd38ceaf99ed015f2a0b9af3499791bd3a3daae21 < c3deb091398e9e469d08dd1599b6d76fd6b29df8affected
LinuxLinuxd38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 87c2213e85bd81e4a9a4d0880c256568794ae388affected
LinuxLinux4.2affected
LinuxLinux0 < 4.2unaffected
LinuxLinux6.1.47 <= 6.1.*unaffected
LinuxLinux6.4.12 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

References