CVE-2023-52461

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-52461
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-52461.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-52461
Downstream
Related
Published
2024-02-23T14:46:22.280Z
Modified
2026-02-13T09:28:19.366137Z
Severity
  • 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
Summary
drm/sched: Fix bounds limiting when given a malformed entity
Details

In the Linux kernel, the following vulnerability has been resolved:

drm/sched: Fix bounds limiting when given a malformed entity

If we're given a malformed entity in drmschedentity_init()--shouldn't happen, but we verify--with out-of-bounds priority value, we set it to an allowed value. Fix the expression which sets this limit.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/52xxx/CVE-2023-52461.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
56e449603f0ac580700621a356d35d5716a62ce5
Fixed
1470d173925d697b497656b93f7c5bddae2e64b2
Fixed
2bbe6ab2be53858507f11f99f856846d04765ae3

Affected versions

v6.*
v6.6
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.7.1

Database specific

vanir_signatures 
[
    {
        "id": "CVE-2023-52461-00dddea4",
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2bbe6ab2be53858507f11f99f856846d04765ae3",
        "target": {
            "function": "drm_sched_entity_init",
            "file": "drivers/gpu/drm/scheduler/sched_entity.c"
        },
        "digest": {
            "length": 1047.0,
            "function_hash": "213069331288625870848110470977512409705"
        },
        "signature_type": "Function"
    },
    {
        "id": "CVE-2023-52461-c341c6a4",
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2bbe6ab2be53858507f11f99f856846d04765ae3",
        "target": {
            "file": "drivers/gpu/drm/scheduler/sched_entity.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "243651923409131166429187501872206893427",
                "1756989752430420221823425177873478707",
                "308341256498311151656487096822420982423",
                "332060884627566510480996393263325549422",
                "191096346422042738598015014384826324844",
                "159216093466953353890635548234221594072"
            ]
        },
        "signature_type": "Line"
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-52461.json"

Git / github.com/gregkh/linux

Affected ranges

Type
GIT
Repo
https://github.com/gregkh/linux
Events
Introduced
0dd3ee31125508cd67f7e7172247f05b7fd1753a
Fixed
7bbf3b67cb49d0f8a20e64b7473923041b758211

Affected versions

v6.*
v6.7
v6.7.1

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-52461.json"