CVE-2023-53819

Summary

In the Linux kernel, the following vulnerability has been resolved:

amdgpu: validate offset_in_bo of drm_amdgpu_gem_va

This is motivated by OOB access in amdgpu_vm_update_range when offset_in_bo+map_size overflows.

v2: keep the validations in amdgpu_vm_bo_map v3: add the validations to amdgpu_vm_bo_map/amdgpu_vm_bo_replace_map rather than to amdgpu_gem_va_ioctl

Affected Software

VendorProductVersion RangeStatus
LinuxLinux9f7eb5367d0001536c361bd1400e14521f854ff1 < 82aace80cfaab778245bd2f9e31b67953725e4d0affected
LinuxLinux9f7eb5367d0001536c361bd1400e14521f854ff1 < d83c337e654d58d3edd15a2ae76e87dc601c07d9affected
LinuxLinux9f7eb5367d0001536c361bd1400e14521f854ff1 < 968e27fd037ec4732068820a9b9836eccc0e0a12affected
LinuxLinux9f7eb5367d0001536c361bd1400e14521f854ff1 < 4300a47e4017c9febb60ffa7d39723eeaed00f2baffected
LinuxLinux9f7eb5367d0001536c361bd1400e14521f854ff1 < b10db1d2137415e5e7f9706d96cfe77539c499d4affected
LinuxLinux9f7eb5367d0001536c361bd1400e14521f854ff1 < f015aadc0d973047f49526a127e900c488d4e425affected
LinuxLinux9f7eb5367d0001536c361bd1400e14521f854ff1 < bc6dbf34dc4fb639522f3e8e66ef05997c0441eeaffected
LinuxLinux9f7eb5367d0001536c361bd1400e14521f854ff1 < 9f0bcf49e9895cb005d78b33a5eebfa11711b425affected
LinuxLinux4.2affected
LinuxLinux0 < 4.2unaffected
LinuxLinux4.19.313 <= 4.19.*unaffected
LinuxLinux5.4.275 <= 5.4.*unaffected
LinuxLinux5.10.188 <= 5.10.*unaffected
LinuxLinux5.15.121 <= 5.15.*unaffected
LinuxLinux6.1.39 <= 6.1.*unaffected
LinuxLinux6.3.13 <= 6.3.*unaffected
LinuxLinux6.4.4 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

References