CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
5.1%
In the Linux kernel, the following vulnerability has been resolved:
drivers/amd/pm: fix a use-after-free in kv_parse_power_table
When ps allocated by kzalloc equals to NULL, kv_parse_power_table
frees adev->pm.dpm.ps that allocated before. However, after the control
flow goes through the following call chains:
kv_parse_power_table
|-> kv_dpm_init
|-> kv_dpm_sw_init
|-> kv_dpm_fini
The adev->pm.dpm.ps is used in the for loop of kv_dpm_fini after its
first free in kv_parse_power_table and causes a use-after-free bug.
Vendor | Product | Version | CPE |
---|---|---|---|
linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
[
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "unaffected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/gpu/drm/amd/pm/legacy-dpm/kv_dpm.c"
],
"versions": [
{
"version": "a2e73f56fa62",
"lessThan": "8a27d9d9fc9b",
"status": "affected",
"versionType": "git"
},
{
"version": "a2e73f56fa62",
"lessThan": "8b55b06e737f",
"status": "affected",
"versionType": "git"
},
{
"version": "a2e73f56fa62",
"lessThan": "520e213a0b97",
"status": "affected",
"versionType": "git"
},
{
"version": "a2e73f56fa62",
"lessThan": "b6dcba02ee17",
"status": "affected",
"versionType": "git"
},
{
"version": "a2e73f56fa62",
"lessThan": "35fa2394d26e",
"status": "affected",
"versionType": "git"
},
{
"version": "a2e73f56fa62",
"lessThan": "95084632a65d",
"status": "affected",
"versionType": "git"
},
{
"version": "a2e73f56fa62",
"lessThan": "3426f059eacc",
"status": "affected",
"versionType": "git"
},
{
"version": "a2e73f56fa62",
"lessThan": "28dd788382c4",
"status": "affected",
"versionType": "git"
}
]
},
{
"product": "Linux",
"vendor": "Linux",
"defaultStatus": "affected",
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"programFiles": [
"drivers/gpu/drm/amd/pm/legacy-dpm/kv_dpm.c"
],
"versions": [
{
"version": "4.2",
"status": "affected"
},
{
"version": "0",
"lessThan": "4.2",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "4.19.306",
"lessThanOrEqual": "4.19.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.4.268",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.10.209",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "5.15.148",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.1.75",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.6.14",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.7.2",
"lessThanOrEqual": "6.7.*",
"status": "unaffected",
"versionType": "custom"
},
{
"version": "6.8",
"lessThanOrEqual": "*",
"status": "unaffected",
"versionType": "original_commit_for_fix"
}
]
}
]
git.kernel.org/stable/c/28dd788382c43b330480f57cd34cde0840896743
git.kernel.org/stable/c/3426f059eacc33ecc676b0d66539297e1cfafd02
git.kernel.org/stable/c/35fa2394d26e919f63600ce631e6aefc95ec2706
git.kernel.org/stable/c/520e213a0b97b64735a13950e9371e0a5d7a5dc3
git.kernel.org/stable/c/8a27d9d9fc9b5564b8904c3a77a7dea482bfa34e
git.kernel.org/stable/c/8b55b06e737feb2a645b0293ea27e38418876d63
git.kernel.org/stable/c/95084632a65d5c0d682a83b55935560bdcd2a1e3
git.kernel.org/stable/c/b6dcba02ee178282e0d28684d241e0b8462dea6a
lists.debian.org/debian-lts-announce/2024/06/msg00016.html
lists.debian.org/debian-lts-announce/2024/06/msg00020.html