Linux Kernel Vulnerability in Display Port Implementation by The Linux Foundation
CVE-2023-53316
What is CVE-2023-53316?
A use-after-free vulnerability has been identified in the Display Port (DP) component of the Linux kernel. During the unbind operation of the DP controller, resources allocated for submodules are freed too early, which can lead to memory corruption. The correct order of operations was not followed, resulting in potential exploitation avenues. The recent patch addresses this issue by ensuring that resources are freed only after all submodules have been properly unregistered, thereby enhancing the stability and security of the memory management within the kernel.
Affected Version(s)
Linux c943b4948b5848fc0e07f875edbd35a973879e22
Linux c943b4948b5848fc0e07f875edbd35a973879e22 < 3c3f3d35f5e05c468b048eb42a4f8c62c6655692
Linux c943b4948b5848fc0e07f875edbd35a973879e22 < 4e9f1a2367aea7d61f6781213e25313cd983b0d7