CVE-2025-21989

CVE-2025-21989 - Linux kernel (drm/amd/display, AMDGPU) The vulnerability stems from a missing .is_two_pixels_per_container function in dce60_tg_funcs when the AMDGPU driver loads with amdgpu.dc=1 (starting with kernel 6.11). This can cause a NULL pointer dereference on older GPUs (e.g., R9 280X)...

CVE-2025-21987 drm/amdgpu: init return value in amdgpu_ttm_clear_buffer

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: init return value in amdgputtmclearbuffer Otherwise an uninitialized value can be returned if amdgpurescleared returns true for all regions. Possibly closes: https://gitlab.freedesktop.org/drm/amd/-/issues/3812 cherry...

CVE-2025-21987 drm/amdgpu: init return value in amdgpu_ttm_clear_buffer

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: init return value in amdgputtmclearbuffer Otherwise an uninitialized value can be returned if amdgpurescleared returns true for all regions. Possibly closes: https://gitlab.freedesktop.org/drm/amd/-/issues/3812 cherry...

CVE-2025-21987

CVE-2025-21987: In Linux kernel DRM/AMDGPU, the bug is in init return value in amdgpu_ttm_clear_buffer; an uninitialized value could be returned if amdgpu_res_cleared returns true for all regions. The issue has been fixed via a cherry-picked commit (commit 7c62aacc3b452f73a1284198c81551035fac6d71...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an uninitialized return value of the amdgputtmclearbuffer function...

Vulnerability of the amdgpu_dm_atomic_check() function in the drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c file – This driver is part of the Linux operating system’s AMD graphics card Direct Rendering Infrastructure (DRI) support module. It allows a hacker to trigger a service failure.

Vulnerability of the amdgpudmatomiccheck function in the driver/gpu/drm/amd/display/amdgpudm/amdgpudm.c file – The driver for Linux operating system graphics cards that support Direct Rendering Infrastructure DRI is vulnerable due to a pointer issue related to NULL pointers. Exploiting this...

Vulnerability of the kfd_mem_dmaunmap_userptr() function in the drivers/gpu/drm/amd/amdgpu/amdgpu_amdkfd_gpuvm.c file – This is a driver for supporting AMD GPU cores in Linux’s Direct Rendering Infrastructure (DRI), which can be exploited by attackers to cause system failures.

Vulnerability of the kfdmemdmaunmapuserptr function in the drivers/gpu/drm/amd/amdgpu/amdgpuamdkfdgpuvm.c file – The drivers for AMD GPU cores in Linux operating systems are vulnerable to a memory leak issue before the last reference is freed. Exploiting this vulnerability could allow an attacker...

The vulnerability of the amdgpu_job_prepare_job() function in the driver’s code (drivers/gpu/drm/amd/amdgpu/amdgpu_job.c) in the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the amdgpujobpreparejob function in the driver’s code drivers/gpu/drm/amd/amdgpu/amdgpujob.c in the Linux kernel is related to deficiencies in handling exceptional conditions. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the amdgpudebugfs regs_smc_read() function in the Linux kernel’s drivers/gpu/drm/amd/amdgpu/amdgpudebugfs.c file allows a hacker to gain elevated privileges within the system.

The vulnerability of the amdgpudebugfs regssmcread function in the drivers/gpu/drm/amd/amdgpu/amdgpudebugfs.c module of the Linux operating system is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to gain elevated...

The vulnerability of DRM/AMD components in Linux operating systems allows a hacker to trigger a service failure.

The vulnerability of DRM/AMD kernel components in the Linux operating system is related to the assignment of the NULL pointer in the amdgpuatifcall function. Exploiting this vulnerability can allow a hacker to trigger a service failure...

The vulnerability of the amdgpudebugfs regs_smc_read() function in the drivers/gpu/drm/amd/amdgpu/amdgpudebugfs.c module of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the amdgpudebugfs regssmcread function in the drivers/gpu/drm/amd/amdgpu/amdgpudebugfs.c module of the Linux operating system is related to the copying of buffers without checking the size of the input data a classic buffer overflow attack. Exploiting this vulnerability could...

The vulnerability of the function dm_helpers_dp_mst_send_payload_allocation() in the kernel of the Linux operating system’s drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_helpers.c module allows a hacker to trigger a service failure.

The vulnerability of the dmhelpersdpmstsendpayloadallocation function in the drivers/gpu/drm/amd/display/amdgpudm/amdgpudmhelpers.c kernel of the Linux operating system is related to the use of pointers. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the is_dsc_need_re_compute() function in the drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_mst_types.c file of the driver support infrastructure for AMD graphics cards in Linux operating systems allows a attacker to cause a service failure.

The vulnerability of the isdscneedrecompute function in the drivers/gpu/drm/amd/display/amdgpudm/amdgpudmmsttypes.c file of the DRI support driver for AMD graphics cards in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a...

CLSA-2025-1742471200 kernel: Fix of 19 CVEs

net: defer final 'struct net' free in netns dismantle CVE-2024-56658 - smb: client: fix potential deadlock when releasing mids CVE-2023-52757 - tcp/dccp: Don't use timerpending in reqskqueueunlink. CVE-2024-50154 - ALSA: 6fire: Release resources at card release CVE-2024-53239 - smb: client: fix...

CLSA-2025-1742469561 kernel: Fix of 19 CVEs

net: defer final 'struct net' free in netns dismantle CVE-2024-56658 - smb: client: fix potential deadlock when releasing mids CVE-2023-52757 - tcp/dccp: Don't use timerpending in reqskqueueunlink. CVE-2024-50154 - ALSA: 6fire: Release resources at card release CVE-2024-53239 - smb: client: fix...

The vulnerability of the cik_ih_get_wptr() function in the drivers/gpu/drm/amd/amdgpu/cik_ih.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the cikihgetwptr function in the drivers/gpu/drm/amd/amdgpu/cikih.c module of the Linux operating system is related to the copying of buffers without checking the size of the input data a classic buffer overflow attack. Exploiting this vulnerability can allow an attacker to...

Fedora 40 : linux-firmware (2025-3110d5f423)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-3110d5f423 advisory. Update to upstream 20250311: amdgpu: many firmware updates qcom: Update gpu firmwares for qcs8300 chipset add firmware for qat420xx devices amdgpu:...

CLSA-2025-1742322442 kernel: Fix of 5 CVEs

HID: core: zero-initialize the report buffer CVE-2024-50302 - Revert "drm/amdgpu: add missing size check in amdgpudebugfsgprwaveread" - drm/amd/amdgpu: Fix GPR read from debugfs v2 CVE-2024-50282 - USB: serial: ioedgeport: fix use after free in debug printk CVE-2024-50267 - wifi: iwlegacy: Clear...

Security update for the Linux Kernel (Live Patch 58 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122222 fixes several issues. The following security issues were fixed: CVE-2024-46818: drm/amd/display: Check gpioid before used as array index bsc1231204. CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679. CVE-2022-48792: scsi: pm800...

Fedora 41 : linux-firmware (2025-7f56eb37a0)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-7f56eb37a0 advisory. Update to upstream 20250311: amdgpu: many firmware updates qcom: Update gpu firmwares for qcs8300 chipset add firmware for qat420xx devices amdgpu:...