CVE-2023-53077

HIGH

Linux Kernel 5.9 - Out-of-bounds Write in CalculateVMAndRowBytes

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix shift-out-of-bounds in CalculateVMAndRowBytes [WHY] When PTEBufferSizeInRequests is zero, UBSAN reports the following warning because dml_log2 returns an unexpected negative value: shift exponent 4294966273 is too large for 32-bit type 'int' [HOW] In the case PTEBufferSizeInRequests is zero, skip the dml_log2() and assign the result directly.

References (5)

Core 5

Core References

Patch

https://git.kernel.org/stable/c/7257070be70e19a9138f39009c1a26c83a8a7cfa

Patch

https://git.kernel.org/stable/c/bec1bea2fa974e63f6059c33edde669c7894d0bc

Patch

https://git.kernel.org/stable/c/a16394b5d661afec9a264fecac3abd87aea439ea

Patch

https://git.kernel.org/stable/c/e12b95680821b9880cd9992c0f3555389363604f

Patch

https://git.kernel.org/stable/c/031f196d1b1b6d5dfcb0533b431e3ab1750e6189

Scores

CVSS v3 7.8

EPSS 0.0017

EPSS Percentile 6.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (13)

Linux/Linux < 5.9

Linux/Linux 5.10.176 - 5.10.*

Linux/Linux 5.15.104 - 5.15.*

Linux/Linux 5.9

Linux/Linux 6.1.21 - 6.1.*

Linux/Linux 6.2.8 - 6.2.*

Linux/Linux 6.3

Linux/Linux 6725a88f88a7e922e91c45bf83d320487810c192 - 031f196d1b1b6d5dfcb0533b431e3ab1750e6189

Linux/Linux 6725a88f88a7e922e91c45bf83d320487810c192 - 7257070be70e19a9138f39009c1a26c83a8a7cfa

Linux/Linux 6725a88f88a7e922e91c45bf83d320487810c192 - a16394b5d661afec9a264fecac3abd87aea439ea

... and 3 more

Published May 02, 2025

Tracked Since Feb 18, 2026