SB20240531213 - Out-of-bounds read in Linux kernel amd include driver

Description

This security bulletin contains information about 1 security vulnerability.

1) Out-of-bounds read (CVE-ID: CVE-2023-52818)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the drivers/gpu/drm/amd/include/pptable.h, drivers/gpu/drm/amd/powerplay/hwmgr/pptable_v1_0.h. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

• https://git.kernel.org/stable/c/e52e324a21341c97350d5f11de14721c1c609498
• https://git.kernel.org/stable/c/cfd8cd907fd94538561479a43aea455f5cf16928
• https://git.kernel.org/stable/c/c847379a5d00078ad6fcb1c24230e72c5609342f
• https://git.kernel.org/stable/c/8af28ae3acb736ada4ce3457662fa446cc913bb4
• https://git.kernel.org/stable/c/acdb6830de02cf2873aeaccdf2d9bca4aee50e47
• https://git.kernel.org/stable/c/fc9ac0e8e0bcb3740c6eaad3a1a50c20016d422b
• https://git.kernel.org/stable/c/6dffdddfca818c02a42b6caa1d9845995f0a1f94
• https://git.kernel.org/stable/c/92a775e7c9707aed28782bafe636bf87675f5a97
• https://git.kernel.org/stable/c/760efbca74a405dc439a013a5efaa9fadc95a8c3
• https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.331
• https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.300
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.202
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.140
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.262
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.64
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.5.13
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.3
• https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.7