CVE-2024-42262

If fetching of userspace memory fails during the main loop, all drm sync objs looked up until that point will be leaked because of the missing drmsyncobjput.

Fix it by exporting and using a common cleanup helper.

(cherry picked from commit 484de39fa5f5b7bd0c5f2e2c5265167250ef7501)

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

bae7cb5d68001a8d4ceec5964dda74bb9aab7220

Fixed

ad5fdc48f7a63b8a98493c667505fe4d3864ae21

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

bae7cb5d68001a8d4ceec5964dda74bb9aab7220

Fixed

32df4abc44f24dbec239d43e2b26d5768c5d1a78

Affected versions

v6.*

v6.10

v6.10-rc1

v6.10-rc2

v6.10-rc3

v6.10-rc4

v6.10-rc5

v6.10-rc6

v6.10-rc7

v6.10.1

v6.10.2

v6.10.3

v6.7

v6.7-rc4

v6.7-rc5

v6.7-rc6

v6.7-rc7

v6.7-rc8

v6.8

v6.8-rc1

v6.8-rc2

v6.8-rc3

v6.8-rc4

v6.8-rc5

v6.8-rc6

v6.8-rc7

v6.9

v6.9-rc1

v6.9-rc2

v6.9-rc3

v6.9-rc4

v6.9-rc5

v6.9-rc6

v6.9-rc7

Database specific

vanir_signatures

[
    {
        "signature_type": "Line",
        "deprecated": false,
        "id": "CVE-2024-42262-02122f71",
        "digest": {
            "line_hashes": [
                "26418163855115907870458760497268865443",
                "283434129704501650427477285471179905470",
                "146890242298070455979512926297630431036",
                "11096742457979514680383957151786078130",
                "263793202459980416661887859509150462035",
                "242886258083588781418546559205866249257",
                "317484307084442089212648509700975770063",
                "190262030765154324281864538039526203602",
                "133434732584098700007561648941359804671",
                "130538844791386117684646595747954934759",
                "174786983321784654807335797595327379867",
                "79833527938198173274064727732134731425",
                "46266925359040464507806856912757416070",
                "155393535835348998926968788222313515334",
                "4238125032443883916651745758374198831",
                "153138287584080730713006995299088359360",
                "22629426135955153650804967229246394140",
                "122730325948820279515746740186467105232",
                "126648420707350693958328458108233671177",
                "191441512235919782041301907827834014240",
                "123452240925591550422329947236389265482",
                "191553573908030274032543879325278805281",
                "111550031140048893998325970144642194320",
                "325175530299903538373675281822669033755",
                "245423787885618406902666447787506579857",
                "54985908272648228701222876259134100008",
                "29583501921151732929510985004827369328",
                "317520384720256931094849258689565775186",
                "332845104964302491012217479859168048460",
                "212081964107729676078000392390940181093",
                "122182456429771869779394481829820323581",
                "115833278259906904332240275372876259007",
                "100022264882444991642224421984807921621",
                "172368183469962294097680610471915117023",
                "334829723649249864654918744596695184531",
                "702879194948028369816103298215755641",
                "192741895583002410030735859624438545616",
                "9696254701137167937469734770369356147",
                "102744284881263251127892131290829342844",
                "115246489366458701776744301902852432746",
                "83950939382674619144427843796391607977",
                "133434732584098700007561648941359804671",
                "130538844791386117684646595747954934759",
                "174786983321784654807335797595327379867",
                "79833527938198173274064727732134731425",
                "46266925359040464507806856912757416070",
                "155393535835348998926968788222313515334",
                "4238125032443883916651745758374198831",
                "153138287584080730713006995299088359360",
                "22629426135955153650804967229246394140",
                "122730325948820279515746740186467105232",
                "126648420707350693958328458108233671177",
                "109298843585729705308278697273929433607",
                "264913465111935829521830729143531183139",
                "10412450393080244280113019555550765376",
                "3919649500601164725216409505310474620",
                "325175530299903538373675281822669033755",
                "245423787885618406902666447787506579857",
                "54985908272648228701222876259134100008",
                "29583501921151732929510985004827369328",
                "17951023104483299276423666230902925580",
                "83840772578133172957613474308565016143",
                "329904461625614894629622428784048435833",
                "225854845506770927655633021793469856772",
                "38059802138400558514113001594084630967",
                "250815491517114839021085745162681489800"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ad5fdc48f7a63b8a98493c667505fe4d3864ae21",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c"
        }
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "id": "CVE-2024-42262-24e70b72",
        "digest": {
            "line_hashes": [
                "26418163855115907870458760497268865443",
                "283434129704501650427477285471179905470",
                "146890242298070455979512926297630431036",
                "11096742457979514680383957151786078130",
                "263793202459980416661887859509150462035",
                "242886258083588781418546559205866249257",
                "317484307084442089212648509700975770063",
                "190262030765154324281864538039526203602",
                "133434732584098700007561648941359804671",
                "130538844791386117684646595747954934759",
                "174786983321784654807335797595327379867",
                "79833527938198173274064727732134731425",
                "46266925359040464507806856912757416070",
                "155393535835348998926968788222313515334",
                "4238125032443883916651745758374198831",
                "153138287584080730713006995299088359360",
                "22629426135955153650804967229246394140",
                "122730325948820279515746740186467105232",
                "126648420707350693958328458108233671177",
                "191441512235919782041301907827834014240",
                "123452240925591550422329947236389265482",
                "191553573908030274032543879325278805281",
                "111550031140048893998325970144642194320",
                "325175530299903538373675281822669033755",
                "245423787885618406902666447787506579857",
                "54985908272648228701222876259134100008",
                "29583501921151732929510985004827369328",
                "317520384720256931094849258689565775186",
                "332845104964302491012217479859168048460",
                "212081964107729676078000392390940181093",
                "122182456429771869779394481829820323581",
                "115833278259906904332240275372876259007",
                "100022264882444991642224421984807921621",
                "172368183469962294097680610471915117023",
                "334829723649249864654918744596695184531",
                "702879194948028369816103298215755641",
                "192741895583002410030735859624438545616",
                "9696254701137167937469734770369356147",
                "102744284881263251127892131290829342844",
                "115246489366458701776744301902852432746",
                "83950939382674619144427843796391607977",
                "133434732584098700007561648941359804671",
                "130538844791386117684646595747954934759",
                "174786983321784654807335797595327379867",
                "79833527938198173274064727732134731425",
                "46266925359040464507806856912757416070",
                "155393535835348998926968788222313515334",
                "4238125032443883916651745758374198831",
                "153138287584080730713006995299088359360",
                "22629426135955153650804967229246394140",
                "122730325948820279515746740186467105232",
                "126648420707350693958328458108233671177",
                "109298843585729705308278697273929433607",
                "264913465111935829521830729143531183139",
                "10412450393080244280113019555550765376",
                "3919649500601164725216409505310474620",
                "325175530299903538373675281822669033755",
                "245423787885618406902666447787506579857",
                "54985908272648228701222876259134100008",
                "29583501921151732929510985004827369328",
                "17951023104483299276423666230902925580",
                "83840772578133172957613474308565016143",
                "329904461625614894629622428784048435833",
                "225854845506770927655633021793469856772",
                "38059802138400558514113001594084630967",
                "250815491517114839021085745162681489800"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@32df4abc44f24dbec239d43e2b26d5768c5d1a78",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c"
        }
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "id": "CVE-2024-42262-47cfb93f",
        "digest": {
            "line_hashes": [
                "212471932177067024137117140942628232751",
                "148761938941077250925043317525194154065",
                "320821918234148101017032567614598133519",
                "44770944887917893742345338051782233431"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@32df4abc44f24dbec239d43e2b26d5768c5d1a78",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_drv.h"
        }
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "id": "CVE-2024-42262-562b55c8",
        "digest": {
            "line_hashes": [
                "212471932177067024137117140942628232751",
                "148761938941077250925043317525194154065",
                "320821918234148101017032567614598133519",
                "44770944887917893742345338051782233431"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ad5fdc48f7a63b8a98493c667505fe4d3864ae21",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_drv.h"
        }
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "id": "CVE-2024-42262-64183029",
        "digest": {
            "length": 1592.0,
            "function_hash": "171485653917528036918745047502895084898"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ad5fdc48f7a63b8a98493c667505fe4d3864ae21",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_reset_performance_params"
        }
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "id": "CVE-2024-42262-7c27202d",
        "digest": {
            "line_hashes": [
                "175486816821616833798679283369870981391",
                "28355570111108987876528173986926515313",
                "116312164107606829847220099099517306557",
                "329148354541147345444351137538697296347",
                "226908876439579076148211793507063260044",
                "199749932659645627743593303890286229161",
                "171329934385881884971324938684971425765",
                "12229838629890431726308132675127180851",
                "13174158285509035358778226678744739644",
                "103912314688070783704312000163505926670",
                "318101990135923769603314371008079377798",
                "46165067840099454702673633581268524943",
                "157383059255245989784082392886711974329",
                "114488913360496516198146289835937233286",
                "321817175761477545697327919813209372357"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ad5fdc48f7a63b8a98493c667505fe4d3864ae21",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_sched.c"
        }
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "id": "CVE-2024-42262-984f70c0",
        "digest": {
            "length": 365.0,
            "function_hash": "318563595183131483799912180488024995776"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@32df4abc44f24dbec239d43e2b26d5768c5d1a78",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_sched.c",
            "function": "v3d_cpu_job_free"
        }
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "id": "CVE-2024-42262-ad38cf71",
        "digest": {
            "length": 365.0,
            "function_hash": "318563595183131483799912180488024995776"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ad5fdc48f7a63b8a98493c667505fe4d3864ae21",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_sched.c",
            "function": "v3d_cpu_job_free"
        }
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "id": "CVE-2024-42262-b2c1b3d8",
        "digest": {
            "length": 1912.0,
            "function_hash": "83562861698450928048684544499581784462"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ad5fdc48f7a63b8a98493c667505fe4d3864ae21",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_copy_performance_query_params"
        }
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "id": "CVE-2024-42262-b3708446",
        "digest": {
            "length": 1592.0,
            "function_hash": "171485653917528036918745047502895084898"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@32df4abc44f24dbec239d43e2b26d5768c5d1a78",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_reset_performance_params"
        }
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "id": "CVE-2024-42262-d8e115ca",
        "digest": {
            "line_hashes": [
                "175486816821616833798679283369870981391",
                "28355570111108987876528173986926515313",
                "116312164107606829847220099099517306557",
                "329148354541147345444351137538697296347",
                "226908876439579076148211793507063260044",
                "199749932659645627743593303890286229161",
                "171329934385881884971324938684971425765",
                "12229838629890431726308132675127180851",
                "13174158285509035358778226678744739644",
                "103912314688070783704312000163505926670",
                "318101990135923769603314371008079377798",
                "46165067840099454702673633581268524943",
                "157383059255245989784082392886711974329",
                "114488913360496516198146289835937233286",
                "321817175761477545697327919813209372357"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@32df4abc44f24dbec239d43e2b26d5768c5d1a78",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_sched.c"
        }
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "id": "CVE-2024-42262-dca94c87",
        "digest": {
            "length": 1912.0,
            "function_hash": "83562861698450928048684544499581784462"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@32df4abc44f24dbec239d43e2b26d5768c5d1a78",
        "signature_version": "v1",
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_copy_performance_query_params"
        }
    }
]

CVE-2024-42262

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Affected versions

v6.*

Database specific

vanir_signatures

Linux / Kernel

Package

Affected ranges