PT-2023-8458 · Linux+8 · Linux Kernel+8

Publicado

2023-06-30

·

Atualizado

2026-02-18

·

CVE-2023-51042

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.4.12
Description The issue is related to a use-after-free error in the amdgpu cs wait all fences function, located in drivers/gpu/drm/amd/amdgpu/amdgpu cs.c. This error can occur due to a race condition, potentially allowing an attacker to impact the confidentiality, integrity, and availability of protected information. The amdgpu cs wait all fences function is part of the amdgpu driver for AMD Radeon graphics cards in the Linux kernel.
Recommendations For Linux kernel versions prior to 6.4.12, update to version 6.4.12 or later to resolve the issue. As a temporary workaround, consider disabling the amdgpu cs wait all fences function until a patch is available. Restrict access to the vulnerable amdgpu module to minimize the risk of exploitation.

Correção

DoS

Race Condition

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-362CWE-416

Identificadores relacionados

ALSA-2024:1607
ALT-PU-2024-14046
ALT-PU-2024-6818
AZL-33967
BDU:2024-00866
CESA-2024_1607
CESA-2024_1614
CVE-2023-51042
OESA-2024-1109
OESA-2024-1110
OESA-2024-1111
OESA-2024-1112
OESA-2024-1113
OESA-2024-1114
OPENSUSE-SU-2024_0469-1
OPENSUSE-SU-2024_0515-1
OPENSUSE-SU-2024_0857-1
RHSA-2024:0930
RHSA-2024:1018
RHSA-2024:1019
RHSA-2024:1248
RHSA-2024:1404
RHSA-2024:1607
RHSA-2024:1614
RHSA-2024_1248
RHSA-2024_1607
RHSA-2024_1614
RLSA-2024:1607
RLSA-2024:1614
RXSA-2024:1248
RXSA-2024:1607
SUSE-SU-2024:0469-1
SUSE-SU-2024:0476-1
SUSE-SU-2024:0483-1
SUSE-SU-2024:0484-1
SUSE-SU-2024:0514-1
SUSE-SU-2024:0515-1
SUSE-SU-2024:0516-1
SUSE-SU-2024:0856-1
SUSE-SU-2024:0857-1
SUSE-SU-2024:0926-1

Produtos afetados

Alt Linux
Almalinux
Astra Linux
Centos
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse