CVE-2023-52461: drm/sched: Fix bounds limiting when given a malformed entity

Description

In the Linux kernel, the following vulnerability has been resolved:

drm/sched: Fix bounds limiting when given a malformed entity

If we're given a malformed entity in drm_sched_entity_init()--shouldn't
happen, but we verify--with out-of-bounds priority value, we set it to an
allowed value. Fix the expression which sets this limit.

Classification

CVE ID: CVE-2023-52461

Affected Products

Vendor: Linux

Product: Linux

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.44% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://git.kernel.org/stable/c/1470d173925d697b497656b93f7c5bddae2e64b2
https://git.kernel.org/stable/c/2bbe6ab2be53858507f11f99f856846d04765ae3

Timeline

2024-12-20 00:30:27 UTC
CVE

drm/sched: Fix bounds limiting when given a malformed entity