Description

In the Linux kernel, the following vulnerability has been resolved: drm/i915/perf: add sentinel to xehp_oa_b_counters Arrays passed to reg_in_range_table should end with empty record. The patch solves KASAN detected bug with signature: BUG: KASAN: global-out-of-bounds in xehp_is_valid_b_counter_addr+0x2c7/0x350 [i915] Read of size 4 at addr ffffffffa1555d90 by task perf/1518 CPU: 4 PID: 1518 Comm: perf Tainted: G U 6.4.0-kasan_438-g3303d06107f3+ #1 Hardware name: Intel Corporation Meteor Lake Client Platform/MTL-P DDR5 SODIMM SBS RVP, BIOS MTLPFWI1.R00.3223.D80.2305311348 05/31/2023 Call Trace: <TASK> ... xehp_is_valid_b_counter_addr+0x2c7/0x350 [i915] (cherry picked from commit 2f42c5afb34b5696cf5fe79e744f99be9b218798)

INFO

Published Date :

2025-10-07T15:19:44.412Z

Last Modified :

2025-10-07T15:19:44.412Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-53646 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-53646.

URL Resource
https://git.kernel.org/stable/c/21d92025e80629fd5c25cd6751f8cf38c784dd4a cve-icon cve-icon
https://git.kernel.org/stable/c/785b3f667b4bf98804cad135005e964df0c750de cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025100717-CVE-2023-53646-c40e@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53646 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53646 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact