CVE-2022-50781 amdgpu/pm: prevent array underflow in vega20_odn_edit_dpm_table()

In the Linux kernel, the following vulnerability has been resolved: amdgpu/pm: prevent array underflow in vega20odneditdpmtable In the PPODEDITVDDCCURVE case the "inputindex" variable is capped at 2 but not checked for negative values so it results in an out of bounds read. This value comes from...

CVE-2022-50781

CVE-2022-50781 (Linux kernel, amdgpu driver) : The issue occurs in amdgpu/pm within the Vega 20 DPM table handling (PP_OD_EDIT_VDDC_CURVE). The root cause is that input_index is capped at 2 but not checked for negative values, leading to an out-of-bounds read when the value is supplied by user sp...

CVE-2022-50781 amdgpu/pm: prevent array underflow in vega20_odn_edit_dpm_table()

In the Linux kernel, the following vulnerability has been resolved: amdgpu/pm: prevent array underflow in vega20odneditdpmtable In the PPODEDITVDDCCURVE case the "inputindex" variable is capped at 2 but not checked for negative values so it results in an out of bounds read. This value comes from...

CVE-2022-50760

CVE-2022-50760 is a Linux kernel vulnerability affecting the DRM/AMDGPU path. The issue stems from a refcount handling in amdgpu_atrm_get_bios(): pci_get_class() returns a pci_device with an increased refcount, and when the loop is broken with a non-NULL pdev, the code must call pci_dev_put() to ...

CVE-2022-50760 drm/amdgpu: Fix PCI device refcount leak in amdgpu_atrm_get_bios()

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix PCI device refcount leak in amdgpuatrmgetbios As comment of pcigetclass says, it returns a pcidevice with its refcount increased and decreased the refcount for the input parameter @from if it is not NULL. If we...

CVE-2022-50760 drm/amdgpu: Fix PCI device refcount leak in amdgpu_atrm_get_bios()

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix PCI device refcount leak in amdgpuatrmgetbios As comment of pcigetclass says, it returns a pcidevice with its refcount increased and decreased the refcount for the input parameter @from if it is not NULL. If we...

CVE-2022-50718

CVE-2022-50718 concerns a refcount leak in the Linux kernel related to the amdgpu driver. The provided documents confirm the issue arises because pci_get_domain_bus_and_slot() returns a pci device with an incremented refcount, and the caller must decrement it via pci_dev_put(). The fix, as descri...

CVE-2022-50718 drm/amdgpu: fix pci device refcount leak

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix pci device refcount leak As comment of pcigetdomainbusandslot says, it returns a pci device with refcount increment, when finish using it, the caller must decrement the reference count by calling pcidevput. So...

CVE-2022-50718 drm/amdgpu: fix pci device refcount leak

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix pci device refcount leak As comment of pcigetdomainbusandslot says, it returns a pci device with refcount increment, when finish using it, the caller must decrement the reference count by calling pcidevput. So...

PT-2025-53126

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s DRM/amdgpu subsystem within the amdgpu atrm get bios function. The issue involves a PCI device reference count leak. Specifically, the pci dev put...

PT-2025-53147

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the amdgpu/pm subsystem, specifically in the vega20 odn edit dpm table function. An array underflow can occur in the PP OD EDIT VDDC CURVE case du...

Linux Distros Unpatched Vulnerability : CVE-2023-54144

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amdkfd: Fix kernel warning during topology setup This patch fixes the following kernel warning seen during driver load by correctly initializing the p2plink...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unreduced PCI device reference count in amdgpuatrmgetbios, which could lead to a reference count leak...

PT-2025-53221

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the drm/amdkfd subsystem. A kernel warning can occur during topology setup due to incorrect initialization of the p2plink attribute before creating th...

SUSE CVE-2025-68286

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check NULL before accessing WHAT IGT kmscursorlegacy's long-nonblocking-modeset-vs-cursor-atomic fails with NULL pointer dereference. This can be reproduced with both an eDP panel and a DP monitors connected. BUG...

SUSE CVE-2025-68173

In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix softlockup in ftracemoduleenable A soft lockup was observed when loading amdgpu module. If a module has a lot of tracable functions, multiple calls to kallsymslookup can spend too much time in RCU critical section and...

SUSE CVE-2025-68190

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/atom: Check kcalloc for WS buffer in amdgpuatomexecutetablelocked kcalloc may fail. When WS is non-zero and allocation fails, ectx.ws remains NULL while ectx.wssize is set, leading to a potential NULL pointer dereferen...

SUSE CVE-2025-68201

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: remove two invalid BUGONs Those can be triggered trivially by userspace...

SUSE CVE-2025-68203

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

AZL-72622 CVE-2025-68286 affecting package kernel for versions less than 6.6.119.3-1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check NULL before accessing WHAT IGT kmscursorlegacy's long-nonblocking-modeset-vs-cursor-atomic fails with NULL pointer dereference. This can be reproduced with both an eDP panel and a DP monitors connected. BUG...