Description
In the Linux kernel, the following vulnerability has been resolved: amdgpu: validate offset_in_bo of drm_amdgpu_gem_va This is motivated by OOB access in amdgpu_vm_update_range when offset_in_bo+map_size overflows. v2: keep the validations in amdgpu_vm_bo_map v3: add the validations to amdgpu_vm_bo_map/amdgpu_vm_bo_replace_map rather than to amdgpu_gem_va_ioctl
Product status
9f7eb5367d0001536c361bd1400e14521f854ff1 (git) before 82aace80cfaab778245bd2f9e31b67953725e4d0
9f7eb5367d0001536c361bd1400e14521f854ff1 (git) before d83c337e654d58d3edd15a2ae76e87dc601c07d9
9f7eb5367d0001536c361bd1400e14521f854ff1 (git) before 968e27fd037ec4732068820a9b9836eccc0e0a12
9f7eb5367d0001536c361bd1400e14521f854ff1 (git) before 4300a47e4017c9febb60ffa7d39723eeaed00f2b
9f7eb5367d0001536c361bd1400e14521f854ff1 (git) before b10db1d2137415e5e7f9706d96cfe77539c499d4
9f7eb5367d0001536c361bd1400e14521f854ff1 (git) before f015aadc0d973047f49526a127e900c488d4e425
9f7eb5367d0001536c361bd1400e14521f854ff1 (git) before bc6dbf34dc4fb639522f3e8e66ef05997c0441ee
9f7eb5367d0001536c361bd1400e14521f854ff1 (git) before 9f0bcf49e9895cb005d78b33a5eebfa11711b425
4.2
Any version before 4.2
4.19.313 (semver)
5.4.275 (semver)
5.10.188 (semver)
5.15.121 (semver)
6.1.39 (semver)
6.3.13 (semver)
6.4.4 (semver)
6.5 (original_commit_for_fix)
References
git.kernel.org/...c/82aace80cfaab778245bd2f9e31b67953725e4d0
git.kernel.org/...c/d83c337e654d58d3edd15a2ae76e87dc601c07d9
git.kernel.org/...c/968e27fd037ec4732068820a9b9836eccc0e0a12
git.kernel.org/...c/4300a47e4017c9febb60ffa7d39723eeaed00f2b
git.kernel.org/...c/b10db1d2137415e5e7f9706d96cfe77539c499d4
git.kernel.org/...c/f015aadc0d973047f49526a127e900c488d4e425
git.kernel.org/...c/bc6dbf34dc4fb639522f3e8e66ef05997c0441ee
git.kernel.org/...c/9f0bcf49e9895cb005d78b33a5eebfa11711b425
