中危 drm/amdkfd:不允许使用大页面映射 MMIO HDP 页面(CVE-2024-41011)

CVE编号

CVE-2024-41011

利用情况

暂无

补丁情况

官方补丁

披露时间

2024-07-18
漏洞描述
In the Linux kernel, the following vulnerability has been resolved:

drm/amdkfd: don't allow mapping the MMIO HDP page with large pages

We don't get the right offset in that case. The GPU has
an unused 4K area of the register BAR space into which you can
remap registers. We remap the HDP flush registers into this
space to allow userspace (CPU or GPU) to flush the HDP when it
updates VRAM. However, on systems with >4K pages, we end up
exposing PAGE_SIZE of MMIO space.
解决建议
建议您更新当前系统或软件至最新版,完成漏洞的修复。
参考链接
https://git.kernel.org/stable/c/009c4d78bcf07c4ac2e3dd9f275b4eaa72b4f884
https://git.kernel.org/stable/c/4b4cff994a27ebf7bd3fb9a798a1cdfa8d01b724
https://git.kernel.org/stable/c/6186c93560889265bfe0914609c274eff40bbeb5
https://git.kernel.org/stable/c/89fffbdf535ce659c1a26b51ad62070566e33b28
https://git.kernel.org/stable/c/8ad4838040e5515939c071a0f511ce2661a0889d
https://git.kernel.org/stable/c/be4a2a81b6b90d1a47eaeaace4cc8e2cb57b96c7
https://git.kernel.org/stable/c/f7276cdc1912325b64c33fcb1361952c06e55f63
受影响软件情况
# 类型 厂商 产品 版本 影响面
1
运行在以下环境
系统 debian_12 linux * Up to
(excluding)
6.1.94-1
运行在以下环境
系统 linux linux_kernel * From
(including)
5.11 		Up to
(excluding)
5.15.166
运行在以下环境
系统 linux linux_kernel * From
(including)
5.16 		Up to
(excluding)
6.1.91
运行在以下环境
系统 linux linux_kernel * From
(including)
5.3 		Up to
(excluding)
5.4.283
运行在以下环境
系统 linux linux_kernel * From
(including)
5.5 		Up to
(excluding)
5.10.225
运行在以下环境
系统 linux linux_kernel * From
(including)
6.7 		Up to
(excluding)
6.8.10
运行在以下环境
系统 linux linux_kernel 6.9 -
阿里云评分
6.5
  • 攻击路径
    本地
  • 攻击复杂度
    复杂
  • 权限要求
    普通权限
  • 影响范围
    越权影响
  • EXP成熟度
    未验证
  • 补丁情况
    官方补丁
  • 数据保密性
    无影响
  • 数据完整性
    无影响
  • 服务器危害
    无影响
  • 全网数量
    N/A
CWE-ID 漏洞类型
CWE-682 数值计算不正确
阿里云安全产品覆盖情况