Description

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix a NULL pointer dereference The LRU mechanism may look up a resource in the process of being removed from an object. The locking rules here are a bit unclear but it looks currently like res->bo assignment is protected by the LRU lock, whereas bo->resource is protected by the object lock, while *clearing* of bo->resource is also protected by the LRU lock. This means that if we check that bo->resource points to the LRU resource under the LRU lock we should be safe. So perform that check before deciding to swap out a bo. That avoids dereferencing a NULL bo->resource in ttm_bo_swapout().

INFO

Published Date :

2025-05-02T15:55:39.661Z

Last Modified :

2025-05-04T07:49:44.736Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-53095 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-53095.

URL Resource
https://git.kernel.org/stable/c/9a9a8fe26751334b7739193a94eba741073b8a55 cve-icon cve-icon
https://git.kernel.org/stable/c/9ba1720f6c4a0f13c3f3cb5c28132ee75555d04f cve-icon cve-icon
https://git.kernel.org/stable/c/9d9b1f9f7a72d83ebf173534e76b246349f32374 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025050222-CVE-2023-53095-5782@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53095 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53095 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact