CVE-2023-53806 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: populate subvp cmd info only for the top pipe [Why] System restart observed while changing the display resolution to 8k with extended mode. Sytem restart was caused by a page fault. [How] When the driver populates subvp info it did it for both the pipes using vblank which caused an outof bounds array access causing the page fault. added checks to allow the top pipe only to fix this issue.

PUBLISHED Reserved 2025-12-08 | Published 2025-12-09 | Updated 2025-12-20 | Assigner Linux

Product status

Default status

unaffected

4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c (git) before 92e6c79acad4b96efeff261d27bdbd8089a7dd24

affected

4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c (git) before 375d192eb1f1d9229a6d994da7ba31f3582b106b

affected

4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c (git) before 9bb10b7aaec3b6278f9cc410c17dcaa129bbbbf0

affected

Default status

affected

4.15

affected

Any version before 4.15

unaffected

6.1.30 (semver)

unaffected

6.3.4 (semver)

unaffected

6.4 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/92e6c79acad4b96efeff261d27bdbd8089a7dd24

git.kernel.org/...c/375d192eb1f1d9229a6d994da7ba31f3582b106b

git.kernel.org/...c/9bb10b7aaec3b6278f9cc410c17dcaa129bbbbf0

cve.org (CVE-2023-53806)

nvd.nist.gov (CVE-2023-53806)

Download JSON

help @ threatint.eu