CVE-2022-48990

HIGH7.8

drm/amdgpu: fix use-after-free during gpu recovery

Published Oct 21, 2024

Modified 9 months ago

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: fix use-after-free during gpu recovery

[Why] [ 754.862560] refcount_t: underflow; use-after-free. [ 754.862898] Call Trace: [ 754.862903] <TASK> [ 754.862913] amdgpu_job_free_cb+0xc2/0xe1 [amdgpu] [ 754.863543] drm_sched_main.cold+0x34/0x39 [amd_sched]

[How] The fw_fence may be not init, check whether dma_fence_init is performed before job free

References

WEB

https://git.kernel.org/stable/c/3cb93f390453cde4d6afda1587aaa00e75e09617

WEB

https://git.kernel.org/stable/c/d2a89cd942edd50c1e652004fd64019be78b0a96

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2022-48990

CVSS Analysis

CVSS v3.1

7.8

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

HighI:H

Availability

HighA:H

7.8/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Ecosystems

Timeline

PublishedOct 21, 2024

ModifiedMay 21, 2025