CVE-2024-53084

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> drm/imagination: Break an object reference loop<br /> <br /> When remaining resources are being cleaned up on driver close,<br /> outstanding VM mappings may result in resources being leaked, due<br /> to an object reference loop, as shown below, with each object (or<br /> set of objects) referencing the object below it:<br /> <br /> PVR GEM Object<br /> GPU scheduler "finished" fence<br /> GPU scheduler “scheduled” fence<br /> PVR driver “done” fence<br /> PVR Context<br /> PVR VM Context<br /> PVR VM Mappings<br /> PVR GEM Object<br /> <br /> The reference that the PVR VM Context has on the VM mappings is a<br /> soft one, in the sense that the freeing of outstanding VM mappings<br /> is done as part of VM context destruction; no reference counts are<br /> involved, as is the case for all the other references in the loop.<br /> <br /> To break the reference loop during cleanup, free the outstanding<br /> VM mappings before destroying the PVR Context associated with the<br /> VM context.