CVE-2024-42263

If fetching of userspace memory fails during the main loop, all drm sync objs looked up until that point will be leaked because of the missing drmsyncobjput.

Fix it by exporting and using a common cleanup helper.

(cherry picked from commit 753ce4fea62182c77e1691ab4f9022008f25b62e)

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9ba0ff3e083f6a4a0b6698f06bfff74805fefa5f

Fixed

9b5033ee2c5af6d1135a403df32d219ab57e55f9

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9ba0ff3e083f6a4a0b6698f06bfff74805fefa5f

Fixed

0e50fcc20bd87584840266e8004f9064a8985b4f

Affected versions

v6.*

v6.10

v6.10-rc1

v6.10-rc2

v6.10-rc3

v6.10-rc4

v6.10-rc5

v6.10-rc6

v6.10-rc7

v6.10.1

v6.10.2

v6.10.3

v6.7

v6.7-rc4

v6.7-rc5

v6.7-rc6

v6.7-rc7

v6.7-rc8

v6.8

v6.8-rc1

v6.8-rc2

v6.8-rc3

v6.8-rc4

v6.8-rc5

v6.8-rc6

v6.8-rc7

v6.9

v6.9-rc1

v6.9-rc2

v6.9-rc3

v6.9-rc4

v6.9-rc5

v6.9-rc6

v6.9-rc7

Database specific

vanir_signatures

[
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_copy_query_results_params"
        },
        "digest": {
            "length": 1462.0,
            "function_hash": "71947026770364154055429320729067255839"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9b5033ee2c5af6d1135a403df32d219ab57e55f9",
        "signature_version": "v1",
        "id": "CVE-2024-42263-0120b525"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_sched.c",
            "function": "v3d_cpu_job_free"
        },
        "digest": {
            "length": 477.0,
            "function_hash": "297157468184210774517216098432694641249"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9b5033ee2c5af6d1135a403df32d219ab57e55f9",
        "signature_version": "v1",
        "id": "CVE-2024-42263-0ecb54c6"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_sched.c",
            "function": "v3d_cpu_job_free"
        },
        "digest": {
            "length": 477.0,
            "function_hash": "297157468184210774517216098432694641249"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0e50fcc20bd87584840266e8004f9064a8985b4f",
        "signature_version": "v1",
        "id": "CVE-2024-42263-33ab0460"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c"
        },
        "digest": {
            "line_hashes": [
                "208532994832825947015149086592220653083",
                "255661327999805029877837748006494167771",
                "250076774539123701094693420948438843381",
                "338615566442204288042318196041732373244",
                "339583599953595156003326022885166069526",
                "93940235332932785912150742826251563994",
                "187405789598081800022976143445280221552",
                "175166628330214325048833665369127170148",
                "190549004303911923660249594646814591791",
                "88240023392251750880067187491437841819",
                "102847104663940160210892748083002715912",
                "266979181796942060052984004529087465659",
                "156270386515208267950894805666563565704",
                "158851769850741504979732601273572859618",
                "243608212176114423652905780525161160509",
                "269529283107017976319659985927089572256",
                "214714150986253478700206205482011226516",
                "339281526510043414781740376073065667580",
                "217999071462653255609787920968893156219",
                "185594283360804715093643853877911619938",
                "242083265193501098636111935225005306437",
                "3013272635928192475918414915144076487",
                "231734385820967367313708591917749922424",
                "198688704823900777050756719976175448719",
                "278194061249347319184207328542260638589",
                "252132875141869795664881896734483436153",
                "41123962139792893344843678565372155587",
                "197533490304094977605589257475163388614",
                "7285230892688759143934834541891926287",
                "139004719786221421483202628793243295684",
                "227611493015727108930666265532440194743",
                "243608212176114423652905780525161160509",
                "269529283107017976319659985927089572256",
                "214714150986253478700206205482011226516",
                "175699454314068204302714178145306295633",
                "285062533633158494200886803766863887072",
                "289342438022745820362185137172555112920",
                "102482059688096815735024710997845079827",
                "5000914996049819857361543822837367193",
                "294390970793848230550090811582583332797",
                "238511966039658945265720445549299222896",
                "200385975307714984360417766200638595865",
                "121316481401806982135756121476793576870",
                "190549004303911923660249594646814591791",
                "88240023392251750880067187491437841819",
                "102847104663940160210892748083002715912",
                "266979181796942060052984004529087465659",
                "156270386515208267950894805666563565704",
                "158851769850741504979732601273572859618",
                "243608212176114423652905780525161160509",
                "269529283107017976319659985927089572256",
                "214714150986253478700206205482011226516",
                "329904461625614894629622428784048435833",
                "225854845506770927655633021793469856772",
                "38059802138400558514113001594084630967",
                "64776359211979905439462510056651781959"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9b5033ee2c5af6d1135a403df32d219ab57e55f9",
        "signature_version": "v1",
        "id": "CVE-2024-42263-34f4b12e"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_sched.c"
        },
        "digest": {
            "line_hashes": [
                "217259965455073459812031399267477267116",
                "243275566298884182654350571607718649718",
                "116312164107606829847220099099517306557",
                "329148354541147345444351137538697296347",
                "46370812841572406752623920827185064044",
                "187849846235026018518999054733279084082",
                "293395125054413343230574850790613061916",
                "142903477262973639339579065130225550560",
                "193446032221907964070659018221646044444",
                "122517397298164536703156828213063135825",
                "273374006790821830387590539490466247747",
                "303509453338249547594519457795375852203",
                "314709769313853506348938302763797702489",
                "136319812066316268796955579173609474691"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0e50fcc20bd87584840266e8004f9064a8985b4f",
        "signature_version": "v1",
        "id": "CVE-2024-42263-4ba617d4"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_reset_timestamp_params"
        },
        "digest": {
            "length": 1054.0,
            "function_hash": "136841154196850963394936968458565996147"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0e50fcc20bd87584840266e8004f9064a8985b4f",
        "signature_version": "v1",
        "id": "CVE-2024-42263-55a795e6"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_timestamp_query_params"
        },
        "digest": {
            "length": 1230.0,
            "function_hash": "72211903638016091846095424253055349092"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9b5033ee2c5af6d1135a403df32d219ab57e55f9",
        "signature_version": "v1",
        "id": "CVE-2024-42263-66fdcb91"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_drv.h"
        },
        "digest": {
            "line_hashes": [
                "143033295952339736794757111626075277368",
                "300402931741543991040916507891031440921",
                "205528131051457189439969249179139439881"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9b5033ee2c5af6d1135a403df32d219ab57e55f9",
        "signature_version": "v1",
        "id": "CVE-2024-42263-e5de1a0e"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_copy_query_results_params"
        },
        "digest": {
            "length": 1462.0,
            "function_hash": "71947026770364154055429320729067255839"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0e50fcc20bd87584840266e8004f9064a8985b4f",
        "signature_version": "v1",
        "id": "CVE-2024-42263-e60f9f91"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c"
        },
        "digest": {
            "line_hashes": [
                "208532994832825947015149086592220653083",
                "255661327999805029877837748006494167771",
                "250076774539123701094693420948438843381",
                "338615566442204288042318196041732373244",
                "339583599953595156003326022885166069526",
                "93940235332932785912150742826251563994",
                "187405789598081800022976143445280221552",
                "175166628330214325048833665369127170148",
                "190549004303911923660249594646814591791",
                "88240023392251750880067187491437841819",
                "102847104663940160210892748083002715912",
                "266979181796942060052984004529087465659",
                "156270386515208267950894805666563565704",
                "158851769850741504979732601273572859618",
                "243608212176114423652905780525161160509",
                "269529283107017976319659985927089572256",
                "214714150986253478700206205482011226516",
                "339281526510043414781740376073065667580",
                "217999071462653255609787920968893156219",
                "185594283360804715093643853877911619938",
                "242083265193501098636111935225005306437",
                "3013272635928192475918414915144076487",
                "231734385820967367313708591917749922424",
                "198688704823900777050756719976175448719",
                "278194061249347319184207328542260638589",
                "252132875141869795664881896734483436153",
                "41123962139792893344843678565372155587",
                "197533490304094977605589257475163388614",
                "7285230892688759143934834541891926287",
                "139004719786221421483202628793243295684",
                "227611493015727108930666265532440194743",
                "243608212176114423652905780525161160509",
                "269529283107017976319659985927089572256",
                "214714150986253478700206205482011226516",
                "175699454314068204302714178145306295633",
                "285062533633158494200886803766863887072",
                "289342438022745820362185137172555112920",
                "102482059688096815735024710997845079827",
                "5000914996049819857361543822837367193",
                "294390970793848230550090811582583332797",
                "238511966039658945265720445549299222896",
                "200385975307714984360417766200638595865",
                "121316481401806982135756121476793576870",
                "190549004303911923660249594646814591791",
                "88240023392251750880067187491437841819",
                "102847104663940160210892748083002715912",
                "266979181796942060052984004529087465659",
                "156270386515208267950894805666563565704",
                "158851769850741504979732601273572859618",
                "243608212176114423652905780525161160509",
                "269529283107017976319659985927089572256",
                "214714150986253478700206205482011226516",
                "329904461625614894629622428784048435833",
                "225854845506770927655633021793469856772",
                "38059802138400558514113001594084630967",
                "64776359211979905439462510056651781959"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0e50fcc20bd87584840266e8004f9064a8985b4f",
        "signature_version": "v1",
        "id": "CVE-2024-42263-ea5a98e7"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_drv.h"
        },
        "digest": {
            "line_hashes": [
                "143033295952339736794757111626075277368",
                "300402931741543991040916507891031440921",
                "205528131051457189439969249179139439881"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0e50fcc20bd87584840266e8004f9064a8985b4f",
        "signature_version": "v1",
        "id": "CVE-2024-42263-f1bb1c64"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_sched.c"
        },
        "digest": {
            "line_hashes": [
                "217259965455073459812031399267477267116",
                "243275566298884182654350571607718649718",
                "116312164107606829847220099099517306557",
                "329148354541147345444351137538697296347",
                "46370812841572406752623920827185064044",
                "187849846235026018518999054733279084082",
                "293395125054413343230574850790613061916",
                "142903477262973639339579065130225550560",
                "193446032221907964070659018221646044444",
                "122517397298164536703156828213063135825",
                "273374006790821830387590539490466247747",
                "303509453338249547594519457795375852203",
                "314709769313853506348938302763797702489",
                "136319812066316268796955579173609474691"
            ],
            "threshold": 0.9
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9b5033ee2c5af6d1135a403df32d219ab57e55f9",
        "signature_version": "v1",
        "id": "CVE-2024-42263-f249e1a2"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_timestamp_query_params"
        },
        "digest": {
            "length": 1230.0,
            "function_hash": "72211903638016091846095424253055349092"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0e50fcc20bd87584840266e8004f9064a8985b4f",
        "signature_version": "v1",
        "id": "CVE-2024-42263-f25620ff"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "target": {
            "file": "drivers/gpu/drm/v3d/v3d_submit.c",
            "function": "v3d_get_cpu_reset_timestamp_params"
        },
        "digest": {
            "length": 1054.0,
            "function_hash": "136841154196850963394936968458565996147"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9b5033ee2c5af6d1135a403df32d219ab57e55f9",
        "signature_version": "v1",
        "id": "CVE-2024-42263-f3ebf17d"
    }
]

CVE-2024-42263

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Affected versions

v6.*

Database specific

vanir_signatures

Linux / Kernel

Package

Affected ranges