retired/CVE-2023-50431


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16

Description: habanalabs: fix information leak in sec_attest_info()
References:
 https://lists.freedesktop.org/archives/dri-devel/2023-November/431772.html
Notes:
 carnil> Commit fixes 0c88760f8f5e ("habanalabs/gaudi2: add secured
 carnil> attestation info uapi") in 6.1-rc1.
 carnil> For 6.6.y fixed as well in 6.6.14, for 6.7.y fixed as well in 6.7.2.
Bugs:
upstream: released (6.8-rc1) [a9f07790a4b2250f0140e9a61c7f842fd9b618c7]
6.1-upstream-stable: released (6.1.75) [6d98d249175e568f72ca94cbd6f959bc4476414e]
5.10-upstream-stable: N/A "Vulnerable code not present"
4.19-upstream-stable: N/A "Vulnerable code not present"
sid: released (6.6.15-1)
6.1-bookworm-security: released (6.1.76-1)
5.10-bullseye-security: N/A "Vulnerable code not present"
4.19-buster-security: N/A "Vulnerable code not present"