Bug 1220756 (CVE-2021-47042) - VUL-0: CVE-2021-47042: kernel: drm/amd/display: Free local data after use
Summary: VUL-0: CVE-2021-47042: kernel: drm/amd/display: Free local data after use
Status: RESOLVED FIXED
Alias: CVE-2021-47042
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/395489/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2024-03-01 10:42 UTC by SMASH SMASH
Modified: 2024-06-07 13:44 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description SMASH SMASH 2024-03-01 10:42:47 UTC 
In the Linux kernel, the following vulnerability has been resolved:

drm/amd/display: Free local data after use

Fixes the following memory leak in dc_link_construct():

unreferenced object 0xffffa03e81471400 (size 1024):
comm "amd_module_load", pid 2486, jiffies 4294946026 (age 10.544s)
hex dump (first 32 bytes):
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
backtrace:
[<000000000bdf5c4a>] kmem_cache_alloc_trace+0x30a/0x4a0
[<00000000e7c59f0e>] link_create+0xce/0xac0 [amdgpu]
[<000000002fb6c072>] dc_create+0x370/0x720 [amdgpu]
[<000000000094d1f3>] amdgpu_dm_init+0x18e/0x17a0 [amdgpu]
[<00000000bec048fd>] dm_hw_init+0x12/0x20 [amdgpu]
[<00000000a2bb7cf6>] amdgpu_device_init+0x1463/0x1e60 [amdgpu]
[<0000000032d3bb13>] amdgpu_driver_load_kms+0x5b/0x330 [amdgpu]
[<00000000a27834f9>] amdgpu_pci_probe+0x192/0x280 [amdgpu]
[<00000000fec7d291>] local_pci_probe+0x47/0xa0
[<0000000055dbbfa7>] pci_device_probe+0xe3/0x180
[<00000000815da970>] really_probe+0x1c4/0x4e0
[<00000000b4b6974b>] driver_probe_device+0x62/0x150
[<000000000f9ecc61>] device_driver_attach+0x58/0x60
[<000000000f65c843>] __driver_attach+0xd6/0x150
[<000000002f5e3683>] bus_for_each_dev+0x6a/0xc0
[<00000000a1cfc897>] driver_attach+0x1e/0x20

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-47042
https://www.cve.org/CVERecord?id=CVE-2021-47042
https://git.kernel.org/stable/c/296443139f893b554dddd56a99ba8471ab5802d4
https://git.kernel.org/stable/c/616cf23b6cf40ad6f03ffbddfa1b6c4eb68d8ae1
https://bugzilla.redhat.com/show_bug.cgi?id=2267008
Comment 1 Gabriele Sonnu 2024-03-01 10:59:09 UTC 
All affected branches already contain the fix. Closing.
Comment 2 Gabriele Sonnu 2024-03-01 10:59:24 UTC 
Closing now.
Comment 5 Gabriele Sonnu 2024-06-07 13:44:49 UTC 
All done, closing.