Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

Vulnerability Intelligence

Customers

CVE-2023-52812 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceCVE-2023-52812

CVE-2023-52812

HIGH7.8

drm/amd: check num of link levels when update pcie param

Published May 21, 2024

Modified 1 months ago

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/amd: check num of link levels when update pcie param

In SR-IOV environment, the value of pcie_table->num_of_link_levels will be 0, and num_of_levels - 1 will cause array index out of bounds

References

WEB

https://git.kernel.org/stable/c/09f617219fe9ccd8d7b65dc3e879b5889f663b5a

WEB

https://git.kernel.org/stable/c/2f2d48b6247ae3001f83c98730b3cce475cb2927

WEB

https://git.kernel.org/stable/c/406e8845356d18bdf3d3a23b347faf67706472ec

WEB

https://git.kernel.org/stable/c/5b4574b663d0a1a0a62d5232429b7db9ae6d0670

WEB

https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2023-52812

CVSS Analysis

CVSS v3.1

7.8

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

HighI:H

Availability

HighA:H

7.8/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Ecosystems

Timeline

PublishedMay 21, 2024

ModifiedJan 5, 2026