Linux Kernel Race Condition Vulnerability in IVPU Acceleration Component

A race condition vulnerability has been identified in the Linux kernel's IVPU acceleration component, specifically within the memory management of buffer objects (BOs). This issue arises when the function responsible for freeing BOs removes them from the BOs list before they are fully unmapped. Consequently, during the context teardown process, a warning is triggered because the memory manager is not properly cleaned up. The vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability can lead to improper memory management during the teardown of graphics contexts, potentially causing warnings or errors in the memory management system.

Reproduction

The vulnerability can be reproduced by unbinding buffer objects in the IVPU acceleration component without properly synchronizing the unmapping process. This can be done by triggering the context teardown process before the buffer objects are fully unmapped, causing a race condition that the vulnerability exploits.

Remediation

Users can upgrade to the latest version of the Linux kernel stable tree, where this vulnerability has been addressed.