CVE-2024-53071: 
Linux Debian vulnerability analysis and mitigation

CVE-2024-53071 affects the Linux kernel's DRM (Direct Rendering Manager) Panthor driver. The vulnerability was discovered in the panthordevicemmap_io() implementation, which contains two security issues related to IO mapping flags. The issue was disclosed on November 19, 2024, and affects Linux kernel versions from 6.10 up to (excluding) 6.11.8, as well as various 6.12 release candidates (NVD).

The vulnerability stems from two specific issues in the panthordevicemmapio() implementation: 1) For DRMPANTHORUSERFLUSHIDMMIOOFFSET mapping, the function fails to clear VMMAYWRITE flag while checking VMWRITE, allowing userspace to later make the mapping writable via mprotect(), and 2) The function doesn't block MAPPRIVATE mappings, which when combined with VMMAYWRITE can lead to undefined behavior with VMPFNMAP and cause the system to crash when vmfinsertpfn_prot() encounters a BUG() check. The vulnerability has been assigned a CVSS v3.1 base score of 5.5 (Medium) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (NVD).

While the first issue appears to have limited practical impact since writes to FLUSHID are either ignored or only result in additional flushes, the second issue involving MAPPRIVATE mappings can cause system crashes when attempting to fault in such mappings. The vulnerability primarily affects system availability through potential crashes, with no direct impact on confidentiality or integrity (Kernel Patch).

The vulnerability has been patched by modifying the panthordevicemmapio() function to clear the VMMAYWRITE flag and require VMSHARED flag for mappings. The fix prevents both the mprotect() bypass and the problematic MAPPRIVATE mappings. Users should update to Linux kernel version 6.11.8 or later to receive the fix (Kernel Patch).