CVE-2023-52561

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to v5.10.y

Description The issue is related to the Linux kernel, where a reserved memory region for the framebuffer memory (the splash memory region set up by the bootloader) was not properly marked. This led to a kernel panic due to an unhandled context fault at the particular memory region, reported on DB845c devices running v5.10.y. The estimated number of potentially affected devices worldwide is not provided. There is no information about real-world incidents where this issue was exploited.

Recommendations For Linux kernel versions prior to v5.10.y, update to a version that includes the fix for the arm64: dts: qcom: sdm845-db845c issue, which marks the cont splash memory region as reserved. As a temporary workaround, consider disabling the arm-smmu function until a patch is available. Restrict access to the vulnerable memory region to minimize the risk of exploitation. Avoid using the arm64: dts: qcom: sdm845-db845c configuration until the issue is resolved.