- Vulnerability/
- CVE-2023-53009
CVE-2023-53009: drm/amdkfd: Add sync after creating vram bo
First published: Thu Mar 27 2025(Updated: )
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Add sync after creating vram bo There will be data corruption on vram allocated by svm if the initialization is not complete and application is writting on the memory. Adding sync to wait for the initialization completion is to resolve this issue.
Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Kernel |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-53009?
CVE-2023-53009 is considered a medium severity vulnerability due to the potential for data corruption in allocated VRAM.
How do I fix CVE-2023-53009?
To fix CVE-2023-53009, ensure you update to the latest version of the Linux kernel that includes the patch for this vulnerability.
What is the impact of CVE-2023-53009?
The impact of CVE-2023-53009 includes possible data corruption when writing to VRAM allocated by SVM if initialization is incomplete.
Which versions of the Linux Kernel are affected by CVE-2023-53009?
CVE-2023-53009 affects versions of the Linux kernel prior to the patch being applied in the stable releases.
Is CVE-2023-53009 easy to exploit?
Exploiting CVE-2023-53009 requires specific conditions related to VRAM allocation and initialization, making it less likely to be easily exploited.
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/type
- agent/description
- agent/first-publish-date
- agent/title
- agent/last-modified-date
- agent/references
- agent/author
- agent/source
- agent/event
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- vendor/linux
- canonical/linux kernel