The vulnerability of the function dm_helpers_dp_mst_send_payload_allocation() in the kernel of the Linux operating system’s drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_helpers.c module allows a hacker to trigger a service failure.

The vulnerability of the dmhelpersdpmstsendpayloadallocation function in the drivers/gpu/drm/amd/display/amdgpudm/amdgpudmhelpers.c kernel of the Linux operating system is related to the use of pointers. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the is_dsc_need_re_compute() function in the drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_mst_types.c file of the driver support infrastructure for AMD graphics cards in Linux operating systems allows a attacker to cause a service failure.

The vulnerability of the isdscneedrecompute function in the drivers/gpu/drm/amd/display/amdgpudm/amdgpudmmsttypes.c file of the DRI support driver for AMD graphics cards in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a...

CLSA-2025-1742471200 kernel: Fix of 19 CVEs

net: defer final 'struct net' free in netns dismantle CVE-2024-56658 - smb: client: fix potential deadlock when releasing mids CVE-2023-52757 - tcp/dccp: Don't use timerpending in reqskqueueunlink. CVE-2024-50154 - ALSA: 6fire: Release resources at card release CVE-2024-53239 - smb: client: fix...

CLSA-2025-1742469561 kernel: Fix of 19 CVEs

net: defer final 'struct net' free in netns dismantle CVE-2024-56658 - smb: client: fix potential deadlock when releasing mids CVE-2023-52757 - tcp/dccp: Don't use timerpending in reqskqueueunlink. CVE-2024-50154 - ALSA: 6fire: Release resources at card release CVE-2024-53239 - smb: client: fix...

Fedora 40 : linux-firmware (2025-3110d5f423)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-3110d5f423 advisory. Update to upstream 20250311: amdgpu: many firmware updates qcom: Update gpu firmwares for qcs8300 chipset add firmware for qat420xx devices amdgpu:...

The vulnerability of the cik_ih_get_wptr() function in the drivers/gpu/drm/amd/amdgpu/cik_ih.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the cikihgetwptr function in the drivers/gpu/drm/amd/amdgpu/cikih.c module of the Linux operating system is related to the copying of buffers without checking the size of the input data a classic buffer overflow attack. Exploiting this vulnerability can allow an attacker to...

CLSA-2025-1742322442 kernel: Fix of 5 CVEs

HID: core: zero-initialize the report buffer CVE-2024-50302 - Revert "drm/amdgpu: add missing size check in amdgpudebugfsgprwaveread" - drm/amd/amdgpu: Fix GPR read from debugfs v2 CVE-2024-50282 - USB: serial: ioedgeport: fix use after free in debug printk CVE-2024-50267 - wifi: iwlegacy: Clear...

Security update for the Linux Kernel (Live Patch 58 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122222 fixes several issues. The following security issues were fixed: CVE-2024-46818: drm/amd/display: Check gpioid before used as array index bsc1231204. CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679. CVE-2022-48792: scsi: pm800...

Fedora 41 : linux-firmware (2025-7f56eb37a0)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-7f56eb37a0 advisory. Update to upstream 20250311: amdgpu: many firmware updates qcom: Update gpu firmwares for qcs8300 chipset add firmware for qat420xx devices amdgpu:...

CLSA-2025-1741624133 kernel: Fix of 5 CVEs

HID: core: zero-initialize the report buffer CVE-2024-50302 - Revert "drm/amdgpu: add missing size check in amdgpudebugfsgprwaveread" - drm/amd/amdgpu: Fix GPR read from debugfs v2 CVE-2024-50282 - USB: serial: ioedgeport: fix use after free in debug printk CVE-2024-50267 - wifi: iwlegacy: Clear...

PT-2025-14487 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns a NULL-check in the Linux kernel's drm/amdgpu component when determining GFX12 PTE flags. Specifically, PRT BOs may not have any backing store, resulting in a NULL...

CVE-2025-21842

In the Linux kernel, the following vulnerability has been resolved: amdkfd: properly free gangctxbo when failed to init user queue The destructor of a gtt bo is declared as void amdgpuamdkfdfreegttmemstruct amdgpudevice adev, void memobj; Which takes void as the second parameter. GCC allows passi...

UBUNTU-CVE-2025-21842

In the Linux kernel, the following vulnerability has been resolved: amdkfd: properly free gangctxbo when failed to init user queue The destructor of a gtt bo is declared as void amdgpuamdkfdfreegttmemstruct amdgpudevice adev, void memobj; Which takes void as the second parameter. GCC allows passi...

SUSE CVE-2024-58052

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix potential NULL pointer dereference in atomctrlgetsmcsclkrangetable The function atomctrlgetsmcsclkrangetable does not check the return value of smuatomgetdatatable. If smuatomgetdatatable fails to retrieve SMUInfo...

AZL-59123 CVE-2024-58052 affecting package kernel for versions less than 5.15.180.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix potential NULL pointer dereference in atomctrlgetsmcsclkrangetable The function atomctrlgetsmcsclkrangetable does not check the return value of smuatomgetdatatable. If smuatomgetdatatable fails to retrieve SMUInfo...

DEBIAN-CVE-2024-58052

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix potential NULL pointer dereference in atomctrlgetsmcsclkrangetable The function atomctrlgetsmcsclkrangetable does not check the return value of smuatomgetdatatable. If smuatomgetdatatable fails to retrieve SMUInfo...

UBUNTU-CVE-2024-58052

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix potential NULL pointer dereference in atomctrlgetsmcsclkrangetable The function atomctrlgetsmcsclkrangetable does not check the return value of smuatomgetdatatable. If smuatomgetdatatable fails to retrieve SMUInfo...

Linux Distros Unpatched Vulnerability : CVE-2024-49989

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: fix double free issue during amdgpu module unload Flexible endpoints use DIGs from available inflexible endpoints, so only the encoders of...

Linux Distros Unpatched Vulnerability : CVE-2024-56594

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amdgpu: set the right AMDGPU sg segment limitation The driver needs to set the correct maxsegmentsize; otherwise debugdmamapsg will complain about the...

PT-2025-14486 · Amd +4 · Amdgpu +4

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 6.11 and later Description: A NULL pointer dereference issue has been identified in the Linux kernel, specifically affecting the AMDGPU driver when loaded with amdgpu.dc=1 on PCs with older GPUs, such as the R9 280X. Thi...