CVE-2023-53806

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: populate subvp cmd info only for the top pipe

[Why] System restart observed while changing the display resolution to 8k with extended mode. Sytem restart was caused by a page fault.

[How] When the driver populates subvp info it did it for both the pipes using vblank which caused an outof bounds array access causing the page fault. added checks to allow the top pipe only to fix this issue.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 92e6c79acad4b96efeff261d27bdbd8089a7dd24affected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 375d192eb1f1d9229a6d994da7ba31f3582b106baffected
LinuxLinux4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c < 9bb10b7aaec3b6278f9cc410c17dcaa129bbbbf0affected
LinuxLinux4.15affected
LinuxLinux0 < 4.15unaffected
LinuxLinux6.1.30 <= 6.1.*unaffected
LinuxLinux6.3.4 <= 6.3.*unaffected
LinuxLinux6.4 <= *unaffected

Weaknesses

References