| { |
| "containers": { |
| "cna": { |
| "providerMetadata": { |
| "orgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038" |
| }, |
| "descriptions": [ |
| { |
| "lang": "en", |
| "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: Fix invalid page access after closing deferred I/O devices\n\nWhen a fbdev with deferred I/O is once opened and closed, the dirty\npages still remain queued in the pageref list, and eventually later\nthose may be processed in the delayed work. This may lead to a\ncorruption of pages, hitting an Oops.\n\nThis patch makes sure to cancel the delayed work and clean up the\npageref list at closing the device for addressing the bug. A part of\nthe cleanup code is factored out as a new helper function that is\ncalled from the common fb_release()." |
| } |
| ], |
| "affected": [ |
| { |
| "product": "Linux", |
| "vendor": "Linux", |
| "defaultStatus": "unaffected", |
| "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", |
| "programFiles": [ |
| "drivers/video/fbdev/core/fb_defio.c", |
| "drivers/video/fbdev/core/fbmem.c", |
| "include/linux/fb.h" |
| ], |
| "versions": [ |
| { |
| "version": "186b89659c4c67cccead52961eab0ca3b23951dc", |
| "lessThan": "87b9802ca824fcee7915e717e9a60471af62e8e9", |
| "status": "affected", |
| "versionType": "git" |
| }, |
| { |
| "version": "56c134f7f1b58be08bdb0ca8372474a4a5165f31", |
| "lessThan": "f1d91f0e9d5a240a809698d7d9c5a538e7dcc149", |
| "status": "affected", |
| "versionType": "git" |
| }, |
| { |
| "version": "56c134f7f1b58be08bdb0ca8372474a4a5165f31", |
| "lessThan": "3efc61d95259956db25347e2a9562c3e54546e20", |
| "status": "affected", |
| "versionType": "git" |
| } |
| ] |
| }, |
| { |
| "product": "Linux", |
| "vendor": "Linux", |
| "defaultStatus": "affected", |
| "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", |
| "programFiles": [ |
| "drivers/video/fbdev/core/fb_defio.c", |
| "drivers/video/fbdev/core/fbmem.c", |
| "include/linux/fb.h" |
| ], |
| "versions": [ |
| { |
| "version": "5.19", |
| "status": "affected" |
| }, |
| { |
| "version": "0", |
| "lessThan": "5.19", |
| "status": "unaffected", |
| "versionType": "semver" |
| }, |
| { |
| "version": "6.1.13", |
| "lessThanOrEqual": "6.1.*", |
| "status": "unaffected", |
| "versionType": "semver" |
| }, |
| { |
| "version": "6.2", |
| "lessThanOrEqual": "*", |
| "status": "unaffected", |
| "versionType": "original_commit_for_fix" |
| } |
| ] |
| } |
| ], |
| "cpeApplicability": [ |
| { |
| "nodes": [ |
| { |
| "operator": "OR", |
| "negate": false, |
| "cpeMatch": [ |
| { |
| "vulnerable": true, |
| "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", |
| "versionStartIncluding": "5.19", |
| "versionEndExcluding": "6.1.13" |
| }, |
| { |
| "vulnerable": true, |
| "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", |
| "versionStartIncluding": "5.19", |
| "versionEndExcluding": "6.2" |
| } |
| ] |
| } |
| ] |
| } |
| ], |
| "references": [ |
| { |
| "url": "https://git.kernel.org/stable/c/87b9802ca824fcee7915e717e9a60471af62e8e9" |
| }, |
| { |
| "url": "https://git.kernel.org/stable/c/f1d91f0e9d5a240a809698d7d9c5a538e7dcc149" |
| }, |
| { |
| "url": "https://git.kernel.org/stable/c/3efc61d95259956db25347e2a9562c3e54546e20" |
| } |
| ], |
| "title": "fbdev: Fix invalid page access after closing deferred I/O devices", |
| "x_generator": { |
| "engine": "bippy-1.2.0" |
| } |
| } |
| }, |
| "cveMetadata": { |
| "assignerOrgId": "f4215fc3-5b6b-47ff-a258-f7189bd81038", |
| "cveID": "CVE-2023-52731", |
| "requesterUserId": "gregkh@kernel.org", |
| "serial": "1", |
| "state": "PUBLISHED" |
| }, |
| "dataType": "CVE_RECORD", |
| "dataVersion": "5.0" |
| } |
