PT-2023-9768 · Linux+4 · Linux Kernel+4

Jesse Zhang

Published

2023-10-26

Updated

2025-02-03

CVE-2023-52816

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel version 6.2.0-34-generic #34~22.04.1-Ubuntu

Description The vulnerability is related to a shift out-of-bounds issue in the drm/amdkfd component of the Linux kernel. This issue can cause a denial of service. The vulnerability is caused by a shift exponent of 255 being too large for a 64-bit type 'long unsigned int'.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for the shift out-of-bounds issue in the drm/amdkfd component.

Note: The provided information does not specify the exact version that includes the fix, so it is recommended to update to the latest available version of the Linux kernel.

Exploit

Fix

Memory Corruption

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-125

Related Identifiers

BDU:2024-10506

CVE-2023-52816

OPENSUSE-SU-2024_2189-1

SUSE-SU-2024:2008-1

SUSE-SU-2024:2011-1

SUSE-SU-2024:2019-1

SUSE-SU-2024:2189-1

SUSE-SU-2024:2190-1

SUSE-SU-2024:2571-1

SUSE-SU-2024:2896-1

SUSE-SU-2024:2973-1

SUSE-SU-2025:20008-1

SUSE-SU-2025:20028-1

Affected Products

Astra Linux

Debian

Linux Kernel

Red Os

Suse

PT-2023-9768 · Linux+4 · Linux Kernel+4

CVE-2023-52816

Weakness Enumeration

Related Identifiers

Affected Products

References · 2540