2363699 – (CVE-2023-53073) CVE-2023-53073 kernel: perf/x86/amd/core: Always clear status for idx

Bug 2363699 (CVE-2023-53073) - CVE-2023-53073 kernel: perf/x86/amd/core: Always clear status for idx

Summary: CVE-2023-53073 kernel: perf/x86/amd/core: Always clear status for idx

Keywords:
Status:	NEW
Alias:	CVE-2023-53073
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-05-02 16:02 UTC by OSIDB Bzimport
Modified:	2025-05-06 03:31 UTC (History)
CC List:	4 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-05-02 16:02:19 UTC

In the Linux kernel, the following vulnerability has been resolved:

perf/x86/amd/core: Always clear status for idx

The variable 'status' (which contains the unhandled overflow bits) is
not being properly masked in some cases, displaying the following
warning:

  WARNING: CPU: 156 PID: 475601 at arch/x86/events/amd/core.c:972 amd_pmu_v2_handle_irq+0x216/0x270

This seems to be happening because the loop is being continued before
the status bit being unset, in case x86_perf_event_set_period()
returns 0. This is also causing an inconsistency because the "handled"
counter is incremented, but the status bit is not cleaned.

Move the bit cleaning together above, together when the "handled"
counter is incremented.

Comment 1 Avinash Hanwate 2025-05-05 05:51:56 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025050214-CVE-2023-53073-a450@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.