CVE-2024-50090
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-50090
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-50090.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2024-50090
- Downstream
- Related
- Published
- 2024-11-05T17:04:54Z
- Modified
- 2025-10-17T15:35:07.862776Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- drm/xe/oa: Fix overflow in oa batch buffer
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
drm/xe/oa: Fix overflow in oa batch buffer
By default xebbcreatejob() appends a MIBATCHBUFFEREND to batch buffer, this is not a problem if batch buffer is only used once but oa reuses the batch buffer for the same metric and at each call it appends a MIBATCHBUFFER_END, printing the warning below and then overflowing.
[ 381.072016] ------------[ cut here ]------------ [ 381.072019] xe 0000:00:02.0: [drm] Assertion
bb->len * 4 + bb_prefetch(q->gt) <= sizefailed! platform: LUNARLAKE subplatform: 1 graphics: Xe2LPG / Xe2HPG 20.04 step B0 media: Xe2LPM / Xe2HPM 20.00 step B0 tile: 0 VRAM 0 B GT: 0 type 1So here checking if batch buffer already have MIBATCHBUFFER_END if not append it.
v2: - simply fix, suggestion from Ashutosh
(cherry picked from commit 9ba0e0f30ca42a98af3689460063edfb6315718a)
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduceddd08ebf6c3525a7ea2186e636df064ea47281987Fixedbcb5be3421705e682b0b32073ad627056d6bc2a2
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduceddd08ebf6c3525a7ea2186e636df064ea47281987Fixed6c10ba06bb1b48acce6d4d9c1e33beb9954f1788