CVE-2023-53806
BaseFortify
Publication date: 2025-12-09
Last updated on: 2025-12-09
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability occurs in the Linux kernel's AMD display driver where the system restarts when changing the display resolution to 8k in extended mode. The issue is caused by the driver populating subvp command information for both display pipes using vblank, which leads to an out-of-bounds array access and causes a page fault. The fix involves adding checks to populate subvp info only for the top pipe, preventing the page fault.
How can this vulnerability impact me? :
This vulnerability can cause the system to unexpectedly restart when changing the display resolution to 8k in extended mode, leading to potential data loss, disruption of work, and reduced system stability.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, update the Linux kernel to a version where the drm/amd/display driver has been fixed to populate subvp cmd info only for the top pipe. This prevents the out-of-bounds array access causing the page fault and system restart when changing display resolution to 8k with extended mode.