CVE-2023-53077

high

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix shift-out-of-bounds in CalculateVMAndRowBytes [WHY] When PTEBufferSizeInRequests is zero, UBSAN reports the following warning because dml_log2 returns an unexpected negative value: shift exponent 4294966273 is too large for 32-bit type 'int' [HOW] In the case PTEBufferSizeInRequests is zero, skip the dml_log2() and assign the result directly.

References

https://git.kernel.org/stable/c/e12b95680821b9880cd9992c0f3555389363604f

https://git.kernel.org/stable/c/bec1bea2fa974e63f6059c33edde669c7894d0bc

https://git.kernel.org/stable/c/a16394b5d661afec9a264fecac3abd87aea439ea

https://git.kernel.org/stable/c/7257070be70e19a9138f39009c1a26c83a8a7cfa

https://git.kernel.org/stable/c/031f196d1b1b6d5dfcb0533b431e3ab1750e6189

Details

Source: Mitre, NVD

Published: 2025-05-02

Updated: 2025-05-02

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Severity: High

EPSS

EPSS: 0.00018