Lucene search
LinuxCVELIST:CVE-2023-52649HistoryMay 01, 2024 - 12:53 p.m.
CVE-2023-52649 drm/vkms: Avoid reading beyond LUT array
2024-05-0112:53:08
Linux
www.cve.org
linux kernel
vulnerability
resolved
drm/vkms
lut array
security
cve-2023-52649
In the Linux kernel, the following vulnerability has been resolved:
drm/vkms: Avoid reading beyond LUT array
When the floor LUT index (drm_fixp2int(lut_index) is the last
index of the array the ceil LUT index will point to an entry
beyond the array. Make sure we guard against it and use the
value of the floor LUT index.
v3:
- Drop bits from commit description that didn’t contribute
anything of value
CNA Affected
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/gpu/drm/vkms/vkms_composer.c"
],
"versions": [
{
"version": "db1f254f2cfa",
"lessThan": "9556c1676730",
"status": "affected",
"versionType": "git"
},
{
"version": "db1f254f2cfa",
"lessThan": "046c1184ce60",
"status": "affected",
"versionType": "git"
},
{
"version": "db1f254f2cfa",
"lessThan": "92800aaeff51",
"status": "affected",
"versionType": "git"
},
{
"version": "db1f254f2cfa",
"lessThan": "2fee84030d12",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/gpu/drm/vkms/vkms_composer.c"
],
"versions": [
{
"version": "6.6",
"status": "affected"
},
{
"version": "0",
"lessThan": "6.6",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.23",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.7.11",
"lessThanOrEqual": "6.7.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.8.2",
"lessThanOrEqual": "6.8.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.9",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]Related
debiancve
debiancve
CVE-2023-52649
2024-05-01 13:15:48
nvd
nvd
CVE-2023-52649
2024-05-01 13:15:48
vulnrichment
vulnrichment
CVE-2023-52649 drm/vkms: Avoid reading beyond LUT array
2024-05-01 12:53:08
cve
cve
CVE-2023-52649
2024-05-01 13:15:48
redhatcve
redhatcve
CVE-2023-52649
2024-05-01 21:55:30
ubuntucve
ubuntucve
CVE-2023-52649
2024-05-01 00:00:00
osv
osv
linux-aws, linux-gcp vulnerabilities
2024-06-07 18:49:30
linux, linux-ibm, linux-lowlatency, linux-raspi vulnerabilities
2024-06-07 18:18:31
linux-oem-6.8 vulnerabilities
2024-06-10 19:28:08
openvas
openvas
Ubuntu: Security Advisory (USN-6817-3)
2024-06-17 00:00:00
Ubuntu: Security Advisory (USN-6817-1)
2024-06-10 00:00:00
Ubuntu: Security Advisory (USN-6817-2)
2024-06-11 00:00:00
nessus
nessus
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6817-3)
2024-06-14 00:00:00
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6816-1)
2024-06-07 00:00:00
Ubuntu 24.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6817-2)
2024-06-10 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-06-07 00:00:00
Linux kernel (OEM) vulnerabilities
2024-06-11 00:00:00
Linux kernel vulnerabilities
2024-06-14 00:00:00