CVE-2024-26922

drm/amdgpu: validate the parameters of bo mapping operations more clearly

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: validate the parameters of bo mapping operations more clearly

Verify the parameters of
amdgpu_vm_bo_(map/replace_map/clearing_mappings) in one common place.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/amdgpu: valide los parámetros de las operaciones de mapeo de bo con mayor claridad. Verifique los parámetros de amdgpu_vm_bo_(map/replace_map/clearing_mappings) en un lugar común.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-02-19 CVE Reserved
2024-04-23 CVE Published
2024-05-03 EPSS Updated
2024-09-11 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (11)

URL	Tag	Source
https://git.kernel.org/stable/c/dc54d3d1744d23ed0b345fd8bc1c493b74e8df44	Vuln. Introduced
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/d4da6b084f1c5625937d49bb6722c5b4aef11b8d	2024-05-02
https://git.kernel.org/stable/c/f68039375d4d6d67303674c0ab2d06b7295c0ec9	2024-05-02
https://git.kernel.org/stable/c/1fd7db5c16028dc07b2ceec190f2e895dddb532d	2024-05-02
https://git.kernel.org/stable/c/8b12fc7b032633539acdf7864888b0ebd49e90f2	2024-04-27
https://git.kernel.org/stable/c/212e3baccdb1939606420d88f7f52d346b49a284	2024-04-27
https://git.kernel.org/stable/c/ef13eeca7c79136bc38e21eb67322c1cbd5c40ee	2024-04-27
https://git.kernel.org/stable/c/b1f04b9b1c5317f562a455384c5f7473e46bdbaa	2024-04-27
https://git.kernel.org/stable/c/6fef2d4c00b5b8561ad68dd2b68173f5c6af1e75	2024-04-17

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 4.19.313 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 4.19.313"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 5.4.275 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 5.4.275"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 5.10.216 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 5.10.216"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 5.15.157 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 5.15.157"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 6.1.88 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 6.1.88"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 6.6.29 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 6.6.29"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 6.8.8 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 6.8.8"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.12 < 6.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.12 < 6.9"		en		Affected