CVE-2023-53112

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the version containing the fix for the max subslices array-index-out-of-bounds access

Description A potential out-of-bounds access issue has been identified in the Linux kernel, specifically in the drm/i915/sseu component. This issue was exposed by a commit and reported by UBSAN on a laptop with a gen 11 i915 card. The problem arises from the eu mask->hsw being limited to a maximum of 6 sub-slices, while gen11 sseu info init() can potentially set 8 sub-slices. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations For Linux kernel versions prior to the version containing the fix, consider applying the patch that reserves up to 8 slots for max subslices in the eu mask struct to prevent the array-index-out-of-bounds access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.