CVE-2023-52822 Information

Description

In the Linux kernel the following vulnerability has been resolved:

drm: vmwgfx_surface.c: copy user-array safely

Currently there is no overflow-check with memdup_user().

Use the new function memdup_array_user() instead of memdup_user() for duplicating the user-space array safely.

Reference

https://git.kernel.org/stable/c/689b33b94f096e717cd8f140a8b5502e7e4fe759 https://git.kernel.org/stable/c/412ce89669341dfd8ed98a4746ad3dbe9653a7b8 https://git.kernel.org/stable/c/1eacb4c96e73225a2f6f276bade006abbe4d8341 https://git.kernel.org/stable/c/21e29f1437b7c36c76efa908589578eaf0f50900 https://git.kernel.org/stable/c/06ab64a0d836ac430c5f94669710a78aa43942cb