CVE-2023-53193
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-09-15

Last updated on: 2025-12-02

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v10_0_hw_fini The gmc.ecc_irq is enabled by firmware per IFWI setting, and the host driver is not privileged to enable/disable the interrupt. So, it is meaningless to use the amdgpu_irq_put function in gmc_v10_0_hw_fini, which also leads to the call trace. [ 82.340264] Call Trace: [ 82.340265] <TASK> [ 82.340269] gmc_v10_0_hw_fini+0x83/0xa0 [amdgpu] [ 82.340447] gmc_v10_0_suspend+0xe/0x20 [amdgpu] [ 82.340623] amdgpu_device_ip_suspend_phase2+0x127/0x1c0 [amdgpu] [ 82.340789] amdgpu_device_ip_suspend+0x3d/0x80 [amdgpu] [ 82.340955] amdgpu_device_pre_asic_reset+0xdd/0x2b0 [amdgpu] [ 82.341122] amdgpu_device_gpu_recover.cold+0x4dd/0xbb2 [amdgpu] [ 82.341359] amdgpu_debugfs_reset_work+0x4c/0x70 [amdgpu] [ 82.341529] process_one_work+0x21d/0x3f0 [ 82.341535] worker_thread+0x1fa/0x3c0 [ 82.341538] ? process_one_work+0x3f0/0x3f0 [ 82.341540] kthread+0xff/0x130 [ 82.341544] ? kthread_complete_and_exit+0x20/0x20 [ 82.341547] ret_from_fork+0x22/0x30
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-09-15
Last Modified
2025-12-02
Generated
2026-06-16
AI Q&A
2025-09-15
EPSS Evaluated
2026-06-15
NVD
CVE-2023-53193
Affected Vendors & Products
Showing 4 associated CPEs
Vendor Product Version / Range
linux linux_kernel From 6.1.26 (inc) to 6.1.29 (exc)
linux linux_kernel From 6.2.13 (inc) to 6.2.16 (exc)
linux linux_kernel From 6.3.1 (inc) to 6.3.3 (exc)
linux linux_kernel 6.3
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-NVD-CWE-noinfo
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Impact Analysis

The impact of this vulnerability is related to improper handling of the gmc.ecc_irq interrupt in the amdgpu driver, which can lead to kernel call traces (errors) during hardware finalization or suspend operations. This could potentially affect system stability or GPU driver behavior but does not indicate direct security compromise or data loss.

Detection Guidance

This vulnerability can be detected by checking the system logs for the specific call trace related to the amdgpu driver. You can use the command 'dmesg | grep amdgpu' to look for the call trace lines indicating the issue, such as 'gmc_v10_0_hw_fini' and related functions in the amdgpu module.

Executive Summary

This vulnerability involves the Linux kernel's amdgpu driver where the function amdgpu_irq_put is incorrectly called in the gmc_v10_0_hw_fini routine. The gmc.ecc_irq interrupt is enabled by firmware and cannot be enabled or disabled by the host driver, making the call to amdgpu_irq_put meaningless and causing a call trace (an error or unexpected behavior in the kernel).

Mitigation Strategies

Immediate mitigation involves updating the Linux kernel to a version where this vulnerability is fixed, as the issue is resolved by correcting the amdgpu_irq_put call trace in the amdgpu driver. There are no configuration changes or workarounds mentioned, so applying the vendor's kernel update is the recommended step.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2023-53193. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart