CVE-2022-48990

EUVD-2022-53869
In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: fix use-after-free during gpu recovery

[Why]
    [  754.862560] refcount_t: underflow; use-after-free.
    [  754.862898] Call Trace:
    [  754.862903]  <TASK>
    [  754.862913]  amdgpu_job_free_cb+0xc2/0xe1 [amdgpu]
    [  754.863543]  drm_sched_main.cold+0x34/0x39 [amd_sched]

[How]
    The fw_fence may be not init, check whether dma_fence_init
    is performed before job free
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 1%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
𝑥
< 6.0.13
linuxlinux_kernel
6.1:rc1
linuxlinux_kernel
6.1:rc2
linuxlinux_kernel
6.1:rc3
linuxlinux_kernel
6.1:rc4
linuxlinux_kernel
6.1:rc5
linuxlinux_kernel
6.1:rc6
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
bullseye
vulnerable
bullseye (security)
vulnerable
sid
6.11.6-1
fixed
trixie
6.11.5-1
fixed
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
kernel-64kb
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-azure
suse enterprise sap 15 SP5
5.14.21-150500.33.75.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.33.75.1
fixed
kernel-default
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-default-base
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1.150500.6.39.4
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1.150500.6.39.4
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1.150500.6.39.4
fixed
kernel-docs
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-macros
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-obs-build
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-source
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-source-azure
suse enterprise sap 15 SP5
5.14.21-150500.33.75.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.33.75.1
fixed
kernel-syms
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
kernel-syms-azure
suse enterprise sap 15 SP5
5.14.21-150500.33.75.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.33.75.1
fixed
kernel-zfcpdump
suse enterprise desktop 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise sap 15 SP5
5.14.21-150500.55.88.1
fixed
suse enterprise server 15 SP5
5.14.21-150500.55.88.1
fixed
Common Weakness Enumeration
References
https://git.kernel.org/stable/c/3cb93f390453cde4d6afda1587aaa00e75e09617
https://git.kernel.org/stable/c/d2a89cd942edd50c1e652004fd64019be78b0a96