CVE-2024-41011

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amdkfd: don't allow mapping the MMIO HDP page with large pages

We don't get the right offset in that case. The GPU has an unused 4K area of the register BAR space into which you can remap registers. We remap the HDP flush registers into this space to allow userspace (CPU or GPU) to flush the HDP when it updates VRAM. However, on systems with >4K pages, we end up exposing PAGE_SIZE of MMIO space.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd8e408a82704c86ba87c3d58cfe69dcdb758aa07 < 009c4d78bcf07c4ac2e3dd9f275b4eaa72b4f884affected
LinuxLinuxd8e408a82704c86ba87c3d58cfe69dcdb758aa07 < f7276cdc1912325b64c33fcb1361952c06e55f63affected
LinuxLinuxd8e408a82704c86ba87c3d58cfe69dcdb758aa07 < 8ad4838040e5515939c071a0f511ce2661a0889daffected
LinuxLinuxd8e408a82704c86ba87c3d58cfe69dcdb758aa07 < 89fffbdf535ce659c1a26b51ad62070566e33b28affected
LinuxLinuxd8e408a82704c86ba87c3d58cfe69dcdb758aa07 < 4b4cff994a27ebf7bd3fb9a798a1cdfa8d01b724affected
LinuxLinuxd8e408a82704c86ba87c3d58cfe69dcdb758aa07 < 6186c93560889265bfe0914609c274eff40bbeb5affected
LinuxLinuxd8e408a82704c86ba87c3d58cfe69dcdb758aa07 < be4a2a81b6b90d1a47eaeaace4cc8e2cb57b96c7affected
LinuxLinux5.3affected
LinuxLinux0 < 5.3unaffected
LinuxLinux5.4.283 <= 5.4.*unaffected
LinuxLinux5.10.225 <= 5.10.*unaffected
LinuxLinux5.15.166 <= 5.15.*unaffected
LinuxLinux6.1.91 <= 6.1.*unaffected
LinuxLinux6.6.31 <= 6.6.*unaffected
LinuxLinux6.8.10 <= 6.8.*unaffected
LinuxLinux6.9 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References