AZL-70501 CVE-2025-38426 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add basic validation for RAS header If RAS header read from EEPROM is corrupted, it could result in trying to allocate huge memory for reading the records. Add some validation to header fields...

DEBIAN-CVE-2025-38426

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add basic validation for RAS header If RAS header read from EEPROM is corrupted, it could result in trying to allocate huge memory for reading the records. Add some validation to header fields...

AZL-65735 CVE-2025-38426 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add basic validation for RAS header If RAS header read from EEPROM is corrupted, it could result in trying to allocate huge memory for reading the records. Add some validation to header fields...

UBUNTU-CVE-2025-38426

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add basic validation for RAS header If RAS header read from EEPROM is corrupted, it could result in trying to allocate huge memory for reading the records. Add some validation to header fields...

CVE-2025-38426 drm/amdgpu: Add basic validation for RAS header

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add basic validation for RAS header If RAS header read from EEPROM is corrupted, it could result in trying to allocate huge memory for reading the records. Add some validation to header fields...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the amdgpu driver not validating the RAS header field, which could lead to an over-allocation of memory...

ROS-20250724-01

Vulnerability of amdgpucswaitallfences function in drivers/gpu/drm/amd/amdgpu/amdgpucs.c driver module amdgpu of AMD Radeon video cards in the Linux kernel is related to the reuse of previously released memory due to competitive access to the resource race condition. Exploitation of the...

CLSA-2025-1753298759 kernel: Fix of 18 CVEs

udf: Fix a slab-out-of-bounds write bug in udffindentry CVE-2022-49846 - Bluetooth: hcisync: Fix queuing commands when HCIUNREGISTER is set CVE-2022-49136 - Bluetooth: Fix use after free in hcisendacl CVE-2022-49111 - NFSv4/pnfs: Fix a use-after-free bug in open CVE-2022-50072 - NFSv4: Don't hold...

CLSA-2025-1753085842 Fix of 10 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-46787 - userfaultfd: fix checks for huge PMDs CVE-url: https://ubuntu.com/security/CVE-2025-37798 - schhtb: make htbqlennotify idempotent - schdrr: make drrqlennotify idempotent - schhfsc: make hfscqlennotify idempotent - schqfq: make qfqqlennotify...

drm/amdgpu: handle amdgpu_cgs_create_device() errors in amd_powerplay_create()

...

DEBIAN-CVE-2025-38319

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pp: Fix potential NULL pointer dereference in atomctrlinitializemcregtable The function atomctrlinitializemcregtable and atomctrlinitializemcregtablev22 does not check the return value of smuatomgetdatatable. If...

kernel: drm/amdgpu: add error handle to avoid out-of-bounds

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add error handle to avoid out-of-bounds if the sdmav40irqidtoseq return -EINVAL, the process should be stop to avoid out-of-bounds read, so directly return -EINVAL...

The vulnerability of the amdgpu_dm.c component of the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the amdgpudm.c component in the Linux operating system is related to reading data from beyond the allowed buffer size. Exploiting this vulnerability can allow an attacker to cause a service failure...

UBUNTU-CVE-2025-38098

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Don't treat wb connector as physical in createvalidatestreamforsink Don't try to operate on a drmwbconnector as an amdgpudmconnector. While dereferencing aconnector-base will "work" it's wrong and might lead to...

SUSE CVE-2025-38091

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: check stream id dml21 wrapper to get planeid Why & How Fix a false positive warning which occurs due to lack of correct checks when querying planeid in DML21. This fixes the warning when performing a mode1 reset...

CVE-2025-38091 drm/amd/display: check stream id dml21 wrapper to get plane_id

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: check stream id dml21 wrapper to get planeid Why & How Fix a false positive warning which occurs due to lack of correct checks when querying planeid in DML21. This fixes the warning when performing a mode1 reset...

Vulnerability of the amdgpu_discovery_reg_base_init() function in the drivers/gpu/drm/amd/amdgpu/amdgpu_discovery.c file – This driver provides support for AMD GPU cores in Linux operating systems’ Direct Rendering Infrastructure (DRI) components. This vulnerability allows attackers to cause system failures.

Vulnerability of the amdgpudiscoveryregbaseinit function in the drivers/gpu/drm/amd/amdgpu/amdgpudiscovery.c file – The drivers for AMD GPU cores in Linux operating systems are vulnerable due to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to cause a system...

Vulnerability of the mmhub_v3_3_print_l2_protection_fault_status() function in the drivers/gpu/drm/amd/amdgpu/mmhub_v3_3.c module – A driver for AMD GPU cores in Linux operating systems that allows a hacker to trigger a service failure

Vulnerability of the mmhubv33printl2protectionfaultstatus function in the drivers/gpu/drm/amd/amdgpu/mmhubv33.c module – The Linux kernel’s AMD GPU Direct Rendering Infrastructure DRI support driver is vulnerable due to buffer overflow exploits. Exploitation of this vulnerability could allow an...

CVE-2025-38011

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: csa unmap use uninterruptible lock After process exit to unmap csa and free GPU vm, if signal is accepted and then waiting to take vm lock is interrupted and return, it causes memory leaking and below warning backtrac...

The vulnerability of the amdgpu_device_fini_sw() function in the drivers/gpu/drm/amd/amdgpu/amdgpu_device.c kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the amdgpudevicefinisw function in the drivers/gpu/drm/amd/amdgpu/amdgpudevice.c kernel of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity...