CVE-2023-52624

HIGH

Linux Kernel < 6.7.3 - Denial of Service via DMCUB GPINT Command Execution

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wake DMCUB before executing GPINT commands [Why] DMCUB can be in idle when we attempt to interface with the HW through the GPINT mailbox resulting in a system hang. [How] Add dc_wake_and_execute_gpint() to wrap the wake, execute, sleep sequence. If the GPINT executes successfully then DMCUB will be put back into sleep after the optional response is returned. It functions similar to the inbox command interface.

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/2ef98c6d753a744e333b7e34b9cf687040fba57d

Patch

https://git.kernel.org/stable/c/e5ffd1263dd5b44929c676171802e7b6af483f21

Scores

CVSS v3 7.8

EPSS 0.0037

EPSS Percentile 28.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-77

Status published

Products (7)

Linux/Linux < 4.15

Linux/Linux 4.15

Linux/Linux 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c - 2ef98c6d753a744e333b7e34b9cf687040fba57d

Linux/Linux 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c - e5ffd1263dd5b44929c676171802e7b6af483f21

Linux/Linux 6.7.3 - 6.7.*

Linux/Linux 6.8

linux/linux_kernel < 6.7.3

Published Mar 26, 2024

Tracked Since Feb 18, 2026