Re: CVE-2024-46805: drm/amdgpu: fix the waring dereferencing hive

public inbox for linux-kernel@vger.kernel.org
 help / color / mirror / Atom feed

* Re: CVE-2024-46805: drm/amdgpu: fix the waring dereferencing hive
       [not found] <2024092709-CVE-2024-46805-b06a@gregkh>
@ 2024-09-30 18:17 ` Michal Koutný
  2024-09-30 18:27   ` Greg Kroah-Hartman
  0 siblings, 1 reply; 2+ messages in thread
From: Michal Koutný @ 2024-09-30 18:17 UTC (permalink / raw)
  To: cve, linux-kernel
  Cc: Greg Kroah-Hartman, Jesse Zhang, Tim Huang, Alex Deucher

[-- Attachment #1: Type: text/plain, Size: 503 bytes --]

Hello.

On Fri, Sep 27, 2024 at 02:36:10PM GMT, Greg Kroah-Hartman <gregkh@linuxfoundation.org> wrote:
> In the Linux kernel, the following vulnerability has been resolved:
> 
> drm/amdgpu: fix the waring dereferencing hive
> 
> Check the amdgpu_hive_info *hive that maybe is NULL.

This "fix" introduces (or transforms) a CVE for panic_on_warn=1 users
(if the NULL is reachable by unprivileged users).

The NULL ptr dereference thus needs a better fix (I checked in
v6.12-rc1).

Michal

[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 228 bytes --]

^ permalink raw reply	[flat|nested] 2+ messages in thread

* Re: CVE-2024-46805: drm/amdgpu: fix the waring dereferencing hive
  2024-09-30 18:17 ` CVE-2024-46805: drm/amdgpu: fix the waring dereferencing hive Michal Koutný
@ 2024-09-30 18:27   ` Greg Kroah-Hartman
  0 siblings, 0 replies; 2+ messages in thread
From: Greg Kroah-Hartman @ 2024-09-30 18:27 UTC (permalink / raw)
  To: Michal Koutný
  Cc: cve, linux-kernel, Jesse Zhang, Tim Huang, Alex Deucher

On Mon, Sep 30, 2024 at 08:17:16PM +0200, Michal Koutný wrote:
> Hello.
> 
> On Fri, Sep 27, 2024 at 02:36:10PM GMT, Greg Kroah-Hartman <gregkh@linuxfoundation.org> wrote:
> > In the Linux kernel, the following vulnerability has been resolved:
> > 
> > drm/amdgpu: fix the waring dereferencing hive
> > 
> > Check the amdgpu_hive_info *hive that maybe is NULL.
> 
> This "fix" introduces (or transforms) a CVE for panic_on_warn=1 users
> (if the NULL is reachable by unprivileged users).

That it does.

> The NULL ptr dereference thus needs a better fix (I checked in
> v6.12-rc1).

Please submit one for inclusion :)

thanks,

greg k-h

^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2024-09-30 18:27 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
     [not found] <2024092709-CVE-2024-46805-b06a@gregkh>
2024-09-30 18:17 ` CVE-2024-46805: drm/amdgpu: fix the waring dereferencing hive Michal Koutný
2024-09-30 18:27   ` Greg Kroah-Hartman

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox