7.8

CVE-2023-52691

drm/amd/pm: fix a double-free in si_dpm_init

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/pm: fix a double-free in si_dpm_init

When the allocation of
adev->pm.dpm.dyn_state.vddc_dependency_on_dispclk.entries fails,
amdgpu_free_extended_power_table is called to free some fields of adev.
However, when the control flow returns to si_dpm_sw_init, it goes to
label dpm_failed and calls si_dpm_fini, which calls
amdgpu_free_extended_power_table again and free those fields again. Thus
a double-free is triggered.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.9 < 4.19.306
LinuxLinux Kernel Version >= 4.20 < 5.4.268
LinuxLinux Kernel Version >= 5.5 < 5.10.209
LinuxLinux Kernel Version >= 5.11 < 5.15.148
LinuxLinux Kernel Version >= 5.16 < 6.1.75
LinuxLinux Kernel Version >= 6.2 < 6.6.14
LinuxLinux Kernel Version >= 6.7 < 6.7.2
DebianDebian Linux Version10.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.26% 0.175
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-415 Double Free

The product calls free() twice on the same memory address.

https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
Mailing List
https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html
Mailing List
https://git.kernel.org/stable/c/06d95c99d5a4f5accdb79464076efe62e668c706
Patch
https://git.kernel.org/stable/c/2bf47c89bbaca2bae16581ef1b28aaec0ade0334
Patch
https://git.kernel.org/stable/c/ac16667237a82e2597e329eb9bc520d1cf9dff30
Patch
https://git.kernel.org/stable/c/aeed2b4e4a70c7568d4a5eecd6a109713c0dfbf4
Patch
https://git.kernel.org/stable/c/afe9f5b871f86d58ecdc45b217b662227d7890d0
Patch
https://git.kernel.org/stable/c/ca8e2e251c65e5a712f6025e27bd9b26d16e6f4a
Patch
https://git.kernel.org/stable/c/f957a1be647f7fc65926cbf572992ec2747a93f2
Patch
https://git.kernel.org/stable/c/fb1936cb587262cd539e84b34541abb06e42b2f9
Patch