Lucene search
LinuxVULNRICHMENT:CVE-2023-52649HistoryMay 01, 2024 - 12:53 p.m.
CVE-2023-52649 drm/vkms: Avoid reading beyond LUT array
2024-05-0112:53:08
Linux
github.com
3
linux kernel
vulnerability
drm/vkms
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
15.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
In the Linux kernel, the following vulnerability has been resolved:
drm/vkms: Avoid reading beyond LUT array
When the floor LUT index (drm_fixp2int(lut_index) is the last
index of the array the ceil LUT index will point to an entry
beyond the array. Make sure we guard against it and use the
value of the floor LUT index.
v3:
- Drop bits from commit description that didn’t contribute
anything of value
CNA Affected
[
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "db1f254f2cfa",
"lessThan": "9556c1676730",
"versionType": "git"
},
{
"status": "affected",
"version": "db1f254f2cfa",
"lessThan": "046c1184ce60",
"versionType": "git"
},
{
"status": "affected",
"version": "db1f254f2cfa",
"lessThan": "92800aaeff51",
"versionType": "git"
},
{
"status": "affected",
"version": "db1f254f2cfa",
"lessThan": "2fee84030d12",
"versionType": "git"
}
],
"programFiles": [
"drivers/gpu/drm/vkms/vkms_composer.c"
],
"defaultStatus": "unaffected"
},
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "6.6"
},
{
"status": "unaffected",
"version": "0",
"lessThan": "6.6",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "6.6.23",
"versionType": "custom",
"lessThanOrEqual": "6.6.*"
},
{
"status": "unaffected",
"version": "6.7.11",
"versionType": "custom",
"lessThanOrEqual": "6.7.*"
},
{
"status": "unaffected",
"version": "6.8.2",
"versionType": "custom",
"lessThanOrEqual": "6.8.*"
},
{
"status": "unaffected",
"version": "6.9",
"versionType": "original_commit_for_fix",
"lessThanOrEqual": "*"
}
],
"programFiles": [
"drivers/gpu/drm/vkms/vkms_composer.c"
],
"defaultStatus": "affected"
}
]Related
cvelist
cvelist
CVE-2023-52649 drm/vkms: Avoid reading beyond LUT array
2024-05-01 12:53:08
ubuntucve
ubuntucve
CVE-2023-52649
2024-05-01 00:00:00
redhatcve
redhatcve
CVE-2023-52649
2024-05-01 21:55:30
osv
osv
CVE-2023-52649
2024-05-01 13:15:00
linux-aws, linux-gcp vulnerabilities
2024-06-07 18:49:30
linux, linux-ibm, linux-lowlatency, linux-raspi vulnerabilities
2024-06-07 18:18:31
nvd
nvd
CVE-2023-52649
2024-05-01 13:15:48
cbl_mariner
cbl_mariner
debiancve
debiancve
CVE-2023-52649
2024-05-01 13:15:48
cve
cve
CVE-2023-52649
2024-05-01 13:15:48
ubuntu
ubuntu
Linux kernel (Oracle) vulnerabilities
2024-07-04 00:00:00
Linux kernel vulnerabilities
2024-06-07 00:00:00
Linux kernel (OEM) vulnerabilities
2024-06-11 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6817-3)
2024-06-17 00:00:00
Ubuntu: Security Advisory (USN-6817-1)
2024-06-10 00:00:00
Ubuntu: Security Advisory (USN-6817-2)
2024-06-11 00:00:00
nessus
nessus
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6817-3)
2024-06-14 00:00:00
Ubuntu 24.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-6878-1)
2024-07-04 00:00:00
Ubuntu 24.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6817-2)
2024-06-10 00:00:00
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
15.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-52649