Philip Yang

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58 Description: The issue is related to the `amdkfd free gtt mem` function in the Linux kernel, where a pointer reference is not correctly passed to `amdgpu bo unref`, potentially causing a use-after-free bug. This occurs because `amdgpu bo unref` clears the local variable instead of the original pointer, which is not set to NULL. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited. Recommendations: For versions prior to 6.6.58, update to version 6.6.58 or later to resolve the issue. As a temporary workaround, consider restricting access to the `drm/amdkfd` module to minimize the risk of exploitation. Avoid using the `amdgpu bo unref` function with the `amdkfd free gtt mem` function until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions 6.5.0-kfd-yangp #2289 and earlier **Description** A possible circular locking dependency has been detected in the Linux kernel, specifically in the drm/amdkfd module. This issue occurs when a task attempts to acquire a lock that already depends on another lock held by the task. The existing dependency chain involves several functions, including ` synchronize srcu`, ` mutex lock`, and ` flush work`. A possible unsafe locking scenario has been identified, which could lead to a deadlock. The vulnerability affects the Linux kernel's ability to manage locks properly, potentially causing system crashes or freezes. **Recommendations** To resolve this issue, update the Linux kernel to a version that includes the fix for the lock dependency warning with srcu. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Description: The issue is related to the drm/amdgpu component of the Linux kernel, specifically with the `amdgpu ttm gart bind` function. The vulnerability can cause a denial of service due to incorrect handling of resources, leading to undefined behavior when the GPU accesses a stale system page. This can make it harder to debug and reproduce the real issue. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel version 6.2.0-34-generic #34~22.04.1-Ubuntu **Description** The vulnerability is related to a shift out-of-bounds issue in the drm/amdkfd component of the Linux kernel. This issue can cause a denial of service. The vulnerability is caused by a shift exponent of 255 being too large for a 64-bit type 'long unsigned int'. **Recommendations** To resolve this issue, update the Linux kernel to a version that includes the fix for the shift out-of-bounds issue in the drm/amdkfd component. Note: The provided information does not specify the exact version that includes the fix, so it is recommended to update to the latest available version of the Linux kernel.