CVE-2023-52867

HIGH

Linux Kernel 4.13-4.14.330 - Out-of-bounds Write in Radeon DRM AFMT Status Buffer

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: possible buffer overflow Buffer 'afmt_status' of size 6 could overflow, since index 'afmt_idx' is checked after access.

References (9)

Core 9

Core References

Patch

https://git.kernel.org/stable/c/112d4b02d94bf9fa4f1d3376587878400dd74783

Patch

https://git.kernel.org/stable/c/caaa74541459c4c9e2c10046cf66ad2890483d0f

Patch

https://git.kernel.org/stable/c/ddc42881f170f1f518496f5a70447501335fc783

Patch

https://git.kernel.org/stable/c/7b063c93bece827fde237fae1c101bceeee4e896

Patch

https://git.kernel.org/stable/c/347f025a02b3a5d715a0b471fc3b1439c338ad94

Patch

https://git.kernel.org/stable/c/341e79f8aec6af6b0061b8171d77b085835c6a58

Patch

https://git.kernel.org/stable/c/d9b4fa249deaae1145d6fc2b64dae718e5c7a855

Patch

https://git.kernel.org/stable/c/19534a7a225f1bf2da70a9a90d41d0215f8f6b45

Patch

https://git.kernel.org/stable/c/dd05484f99d16715a88eedfca363828ef9a4c2d4

Scores

CVSS v3 7.8

EPSS 0.0026

EPSS Percentile 16.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-787

Status published

Products (21)

Linux/Linux < 4.13

Linux/Linux 4.13

Linux/Linux 4.14.330 - 4.14.*

Linux/Linux 4.19.299 - 4.19.*

Linux/Linux 5.10.201 - 5.10.*

Linux/Linux 5.15.139 - 5.15.*

Linux/Linux 5.4.261 - 5.4.*

Linux/Linux 5cc4e5fc293bfe2634535f544427e8c6061492a5 - 112d4b02d94bf9fa4f1d3376587878400dd74783

Linux/Linux 5cc4e5fc293bfe2634535f544427e8c6061492a5 - 19534a7a225f1bf2da70a9a90d41d0215f8f6b45

Linux/Linux 5cc4e5fc293bfe2634535f544427e8c6061492a5 - 341e79f8aec6af6b0061b8171d77b085835c6a58

... and 11 more

Published May 21, 2024

Tracked Since Feb 18, 2026