CVE-2023-52812

drm/amd: check num of link levels when update pcie param

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amd: check num of link levels when update pcie param In SR-IOV environment, the value of pcie_table->num_of_link_levels will be 0, and num_of_levels - 1 will cause array index out of bounds

Category

7.8
CVSS
Severity: High
CVSS 3.1 •
EPSS 0.05%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/2f2d48b6247ae3001f83c98730b3cce475cb2927 patch
https://git.kernel.org/stable/c/5b4574b663d0a1a0a62d5232429b7db9ae6d0670 patch
https://git.kernel.org/stable/c/09f617219fe9ccd8d7b65dc3e879b5889f663b5a patch
https://git.kernel.org/stable/c/406e8845356d18bdf3d3a23b347faf67706472ec patch

Frequently Asked Questions

What is the severity of CVE-2023-52812?
CVE-2023-52812 has been scored as a high severity vulnerability.
How to fix CVE-2023-52812?
To fix CVE-2023-52812, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2023-52812 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2023-52812 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-52812?
CVE-2023-52812 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.