-

CVE-2023-53819

EPSS 0.03%
Veröffentlicht 09.12.2025 00:01:17
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

amdgpu: validate offset_in_bo of drm_amdgpu_gem_va

In the Linux kernel, the following vulnerability has been resolved:

amdgpu: validate offset_in_bo of drm_amdgpu_gem_va

This is motivated by OOB access in amdgpu_vm_update_range when
offset_in_bo+map_size overflows.

v2: keep the validations in amdgpu_vm_bo_map
v3: add the validations to amdgpu_vm_bo_map/amdgpu_vm_bo_replace_map
    rather than to amdgpu_gem_va_ioctl

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

CNA 2 VulnDex Vulnerability Enrichment 10

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 9f7eb5367d0001536c361bd1400e14521f854ff1

Version < 82aace80cfaab778245bd2f9e31b67953725e4d0

Status affected

Version 9f7eb5367d0001536c361bd1400e14521f854ff1

Version < d83c337e654d58d3edd15a2ae76e87dc601c07d9

Status affected

Version 9f7eb5367d0001536c361bd1400e14521f854ff1

Version < 968e27fd037ec4732068820a9b9836eccc0e0a12

Status affected

Version 9f7eb5367d0001536c361bd1400e14521f854ff1

Version < 4300a47e4017c9febb60ffa7d39723eeaed00f2b

Status affected

Version 9f7eb5367d0001536c361bd1400e14521f854ff1

Version < b10db1d2137415e5e7f9706d96cfe77539c499d4

Status affected

Version 9f7eb5367d0001536c361bd1400e14521f854ff1

Version < f015aadc0d973047f49526a127e900c488d4e425

Status affected

Version 9f7eb5367d0001536c361bd1400e14521f854ff1

Version < bc6dbf34dc4fb639522f3e8e66ef05997c0441ee

Status affected

Version 9f7eb5367d0001536c361bd1400e14521f854ff1

Version < 9f0bcf49e9895cb005d78b33a5eebfa11711b425

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 4.2

Status affected

Version 0

Version < 4.2

Status unaffected

Version <= 4.19.*

Version 4.19.313

Status unaffected

Version <= 5.4.*

Version 5.4.275

Status unaffected

Version <= 5.10.*

Version 5.10.188

Status unaffected

Version <= 5.15.*

Version 5.15.121

Status unaffected

Version <= 6.1.*

Version 6.1.39

Status unaffected

Version <= 6.3.*

Version 6.3.13

Status unaffected

Version <= 6.4.*

Version 6.4.4

Status unaffected

Version <= *

Version 6.5

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.085

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/82aace80cfaab778245bd2f9e31b67953725e4d0

https://git.kernel.org/stable/c/d83c337e654d58d3edd15a2ae76e87dc601c07d9

https://git.kernel.org/stable/c/968e27fd037ec4732068820a9b9836eccc0e0a12

https://git.kernel.org/stable/c/4300a47e4017c9febb60ffa7d39723eeaed00f2b

https://git.kernel.org/stable/c/b10db1d2137415e5e7f9706d96cfe77539c499d4

https://git.kernel.org/stable/c/f015aadc0d973047f49526a127e900c488d4e425

https://git.kernel.org/stable/c/bc6dbf34dc4fb639522f3e8e66ef05997c0441ee

https://git.kernel.org/stable/c/9f0bcf49e9895cb005d78b33a5eebfa11711b425

https://nvd.nist.gov/vuln/detail/CVE-2023-53819

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53819

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53819

EUVD