Linux Kernel VGA Switcheroo Race Condition Vulnerability in Framebuffer Console Setup

A race condition vulnerability has been addressed in the Linux kernel's handling of VGA switcheroo clients and the framebuffer console (fbcon). This issue arises because the VGA switcheroo helper is invoked before the framebuffer is fully registered, leading to an invalid state that can cause out-of-bounds access when fbcon attempts to remap all clients. The vulnerability affects the amdgpu, i915, nouveau, and radeon drivers, all of which support VGA switcheroo. The root cause is the improper timing of function calls related to framebuffer registration and VGA output switching, which can disrupt the expected behavior of the console framebuffer management.

Impact

Exploitation of this vulnerability could lead to incorrect handling of framebuffer console output when switching VGA clients, potentially causing graphical display issues or inconsistencies.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for downloading the patched version are available on the Linux kernel official website.