SB2025050481 - Buffer overflow in Linux kernel drm i915 driver
Published: May 4, 2025 Updated: May 10, 2025
Security Bulletin ID
SB2025050481
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Buffer overflow (CVE-ID: CVE-2023-53087)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the replace_barrier() and i915_active_add_request() functions in drivers/gpu/drm/i915/i915_active.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/5c7591b8574c52c56b3994c2fbef1a3a311b5715
- https://git.kernel.org/stable/c/5e784a7d07af42057c0576fb647b482f4cb0dc2c
- https://git.kernel.org/stable/c/6ab7d33617559cced63d467928f478ea5c459021
- https://git.kernel.org/stable/c/9159db27fb19bbf1c91b5c9d5285e66cc96cc5ff
- https://git.kernel.org/stable/c/e0e6b416b25ee14716f3549e0cbec1011b193809
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.176
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.104
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.21
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.2.8
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.3