Linux Kernel Infinite Recursion Vulnerability in DRM XE Migration

A vulnerability in the Linux kernel's Direct Rendering Manager (DRM) XE migration process can lead to infinite recursion and a kernel panic. This issue occurs when the buffer and offset are not aligned to the required cache line size, causing the system to revert to using a bounce buffer. However, this bounce buffer is allocated on the stack and may not meet the necessary alignment requirements. If the buffer remains misaligned, the function recurses, potentially exhausting the stack. The vulnerability has been addressed by changing the bounce buffer allocation from the stack to the heap, ensuring proper alignment and preventing the recursive stack overflow.

Impact

Exploitation of this vulnerability could cause a kernel panic, disrupting system operations and potentially leading to a denial of service.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the Linux kernel official website.