CVE-2023-53806 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: populate subvp cmd info only for the top pipe [Why] System restart observed while changing the display resolution to 8k with extended mode. Sytem restart was caused by a page fault. [How] When the driver populates subvp info it did it for both the pipes using vblank which caused an outof bounds array access causing the page fault. added checks to allow the top pipe only to fix this issue.

PUBLISHED Reserved 2025-12-08 | Published 2025-12-09 | Updated 2025-12-09 | Assigner Linux

Product status

Default status

unaffected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 92e6c79acad4b96efeff261d27bdbd8089a7dd24

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 375d192eb1f1d9229a6d994da7ba31f3582b106b

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 9bb10b7aaec3b6278f9cc410c17dcaa129bbbbf0

affected

Default status

affected

6.1.30 (semver)

unaffected

6.3.4 (semver)

unaffected

6.4 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/92e6c79acad4b96efeff261d27bdbd8089a7dd24

git.kernel.org/...c/375d192eb1f1d9229a6d994da7ba31f3582b106b

git.kernel.org/...c/9bb10b7aaec3b6278f9cc410c17dcaa129bbbbf0

cve.org (CVE-2023-53806)

nvd.nist.gov (CVE-2023-53806)

Download JSON