cve-2023-52485
Vulnerability from cvelistv5
Published
2024-02-29 14:57
Modified
2024-12-19 08:20
Severity ?
Summary
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wake DMCUB before sending a command [Why] We can hang in place trying to send commands when the DMCUB isn't powered on. [How] For functions that execute within a DC context or DC lock we can wrap the direct calls to dm_execute_dmub_cmd/list with code that exits idle power optimizations and reallows once we're done with the command submission on success. For DM direct submissions the DM will need to manage the enter/exit sequencing manually. We cannot invoke a DMCUB command directly within the DM execution helper or we can deadlock.
Impacted products
Vendor Product Version
Linux Linux
Show details on NVD website


{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-52485",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-03-05T22:17:04.458995Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-13T18:26:57.574Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:03:19.936Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/303197775a97416b62d4da69280d0c120a20e009"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8892780834ae294bc3697c7d0e056d7743900b39"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c",
            "drivers/gpu/drm/amd/display/dc/bios/command_table2.c",
            "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn31/dcn31_clk_mgr.c",
            "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn314/dcn314_clk_mgr.c",
            "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn315/dcn315_clk_mgr.c",
            "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn316/dcn316_clk_mgr.c",
            "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn35/dcn35_clk_mgr.c",
            "drivers/gpu/drm/amd/display/dc/core/dc.c",
            "drivers/gpu/drm/amd/display/dc/core/dc_hw_sequencer.c",
            "drivers/gpu/drm/amd/display/dc/dc_dmub_srv.c",
            "drivers/gpu/drm/amd/display/dc/dc_dmub_srv.h",
            "drivers/gpu/drm/amd/display/dc/dc_helper.c",
            "drivers/gpu/drm/amd/display/dc/dce/dmub_abm_lcd.c",
            "drivers/gpu/drm/amd/display/dc/dce/dmub_hw_lock_mgr.c",
            "drivers/gpu/drm/amd/display/dc/dce/dmub_outbox.c",
            "drivers/gpu/drm/amd/display/dc/dce/dmub_psr.c",
            "drivers/gpu/drm/amd/display/dc/dcn21/dcn21_hubp.c",
            "drivers/gpu/drm/amd/display/dc/dcn31/dcn31_dio_link_encoder.c",
            "drivers/gpu/drm/amd/display/dc/dcn31/dcn31_panel_cntl.c",
            "drivers/gpu/drm/amd/display/dc/hwss/dcn21/dcn21_hwseq.c",
            "drivers/gpu/drm/amd/display/dc/hwss/dcn30/dcn30_hwseq.c",
            "drivers/gpu/drm/amd/display/dc/hwss/dcn31/dcn31_hwseq.c",
            "drivers/gpu/drm/amd/display/dc/hwss/dcn32/dcn32_hwseq.c",
            "drivers/gpu/drm/amd/display/dc/link/protocols/link_dp_capability.c",
            "drivers/gpu/drm/amd/display/dc/link/protocols/link_dp_dpia.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "303197775a97416b62d4da69280d0c120a20e009",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "8892780834ae294bc3697c7d0e056d7743900b39",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c",
            "drivers/gpu/drm/amd/display/dc/bios/command_table2.c",
            "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn31/dcn31_clk_mgr.c",
            "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn314/dcn314_clk_mgr.c",
            "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn315/dcn315_clk_mgr.c",
            "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn316/dcn316_clk_mgr.c",
            "drivers/gpu/drm/amd/display/dc/clk_mgr/dcn35/dcn35_clk_mgr.c",
            "drivers/gpu/drm/amd/display/dc/core/dc.c",
            "drivers/gpu/drm/amd/display/dc/core/dc_hw_sequencer.c",
            "drivers/gpu/drm/amd/display/dc/dc_dmub_srv.c",
            "drivers/gpu/drm/amd/display/dc/dc_dmub_srv.h",
            "drivers/gpu/drm/amd/display/dc/dc_helper.c",
            "drivers/gpu/drm/amd/display/dc/dce/dmub_abm_lcd.c",
            "drivers/gpu/drm/amd/display/dc/dce/dmub_hw_lock_mgr.c",
            "drivers/gpu/drm/amd/display/dc/dce/dmub_outbox.c",
            "drivers/gpu/drm/amd/display/dc/dce/dmub_psr.c",
            "drivers/gpu/drm/amd/display/dc/dcn21/dcn21_hubp.c",
            "drivers/gpu/drm/amd/display/dc/dcn31/dcn31_dio_link_encoder.c",
            "drivers/gpu/drm/amd/display/dc/dcn31/dcn31_panel_cntl.c",
            "drivers/gpu/drm/amd/display/dc/hwss/dcn21/dcn21_hwseq.c",
            "drivers/gpu/drm/amd/display/dc/hwss/dcn30/dcn30_hwseq.c",
            "drivers/gpu/drm/amd/display/dc/hwss/dcn31/dcn31_hwseq.c",
            "drivers/gpu/drm/amd/display/dc/hwss/dcn32/dcn32_hwseq.c",
            "drivers/gpu/drm/amd/display/dc/link/protocols/link_dp_capability.c",
            "drivers/gpu/drm/amd/display/dc/link/protocols/link_dp_dpia.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Wake DMCUB before sending a command\n\n[Why]\nWe can hang in place trying to send commands when the DMCUB isn\u0027t\npowered on.\n\n[How]\nFor functions that execute within a DC context or DC lock we can\nwrap the direct calls to dm_execute_dmub_cmd/list with code that\nexits idle power optimizations and reallows once we\u0027re done with\nthe command submission on success.\n\nFor DM direct submissions the DM will need to manage the enter/exit\nsequencing manually.\n\nWe cannot invoke a DMCUB command directly within the DM execution\nhelper or we can deadlock."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-12-19T08:20:42.893Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/303197775a97416b62d4da69280d0c120a20e009"
        },
        {
          "url": "https://git.kernel.org/stable/c/8892780834ae294bc3697c7d0e056d7743900b39"
        }
      ],
      "title": "drm/amd/display: Wake DMCUB before sending a command",
      "x_generator": {
        "engine": "bippy-5f407fcff5a0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52485",
    "datePublished": "2024-02-29T14:57:51.179Z",
    "dateReserved": "2024-02-20T12:30:33.301Z",
    "dateUpdated": "2024-12-19T08:20:42.893Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-52485\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2024-02-29T15:15:07.397\",\"lastModified\":\"2024-11-21T08:39:52.737\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\ndrm/amd/display: Wake DMCUB before sending a command\\n\\n[Why]\\nWe can hang in place trying to send commands when the DMCUB isn\u0027t\\npowered on.\\n\\n[How]\\nFor functions that execute within a DC context or DC lock we can\\nwrap the direct calls to dm_execute_dmub_cmd/list with code that\\nexits idle power optimizations and reallows once we\u0027re done with\\nthe command submission on success.\\n\\nFor DM direct submissions the DM will need to manage the enter/exit\\nsequencing manually.\\n\\nWe cannot invoke a DMCUB command directly within the DM execution\\nhelper or we can deadlock.\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/amd/display: activa DMCUB antes de enviar un comando [Por qu\u00e9] Podemos quedarnos quietos intentando enviar comandos cuando DMCUB no est\u00e1 encendido. [C\u00f3mo] Para funciones que se ejecutan dentro de un contexto de DC o bloqueo de DC, podemos ajustar las llamadas directas a dm_execute_dmub_cmd/list con c\u00f3digo que salga de las optimizaciones de energ\u00eda inactivas y se vuelva a permitir una vez que hayamos terminado con el env\u00edo del comando en caso de \u00e9xito. Para env\u00edos directos de DM, el DM deber\u00e1 gestionar la secuencia de entrada/salida manualmente. No podemos invocar un comando DMCUB directamente dentro del asistente de ejecuci\u00f3n de DM o podemos bloquearnos.\"}],\"metrics\":{},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/303197775a97416b62d4da69280d0c120a20e009\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/8892780834ae294bc3697c7d0e056d7743900b39\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/303197775a97416b62d4da69280d0c120a20e009\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.kernel.org/stable/c/8892780834ae294bc3697c7d0e056d7743900b39\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.