CVE-2024-36342

Improper input validation in the GPU driver could allow an attacker to exploit a heap overflow potentially resulting in arbitrary code execution...

CVE-2024-36342

CVE-2024-36342 refers to an improper input validation in the GPU driver that could cause a heap overflow, potentially enabling arbitrary code execution. The vulnerability is discussed across multiple sources tied to AMD graphics/GPU drivers and AMD Embedded Processors. The core impact stated is h...

PT-2025-36388

Name of the Vulnerable Software and Affected Versions: AMD Power Management Firmware PMFW affected versions not specified Description: Improper input validation in AMD Power Management Firmware PMFW could allow a privileged attacker from a Guest VM to send arbitrary input data, potentially causin...

SUSE CVE-2025-39707

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: check if hubbub is NULL in debugfs/amdgpudmcapabilities HUBBUB structure is not initialized on DCE hardware, so check if it is NULL to avoid null dereference while accessing amdgpudmcapabilities file in debugfs...

CVE-2025-38705

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: fix null pointer access Writing a string without delimiters ' ', '\n', '\0' to the under gpuod/fanctrl sysfs or pppowerprofilemode for the CUSTOM profile will result in a null pointer dereference...

AZL-66851 CVE-2025-38705 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: fix null pointer access Writing a string without delimiters ' ', '\n', '\0' to the under gpuod/fanctrl sysfs or pppowerprofilemode for the CUSTOM profile will result in a null pointer dereference...

DEBIAN-CVE-2025-38705

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: fix null pointer access Writing a string without delimiters ' ', '\n', '\0' to the under gpuod/fanctrl sysfs or pppowerprofilemode for the CUSTOM profile will result in a null pointer dereference...

CVE-2025-38705 drm/amd/pm: fix null pointer access

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: fix null pointer access Writing a string without delimiters ' ', '\n', '\0' to the under gpuod/fanctrl sysfs or pppowerprofilemode for the CUSTOM profile will result in a null pointer dereference...

CVE-2025-38705

CVE-2025-38705: In the Linux kernel, writing a string without delimiters to gpu_od/fan_ctrl or pp_power_profile_mode for the CUSTOM profile can cause a NULL pointer dereference in drm/amd/pm. SUSE/OpenSUSE advisories (e.g., SUSE-SU-2025:03600-1) list this alongside many other kernel fixes and ind...

drm/amdgpu: Fix possible NULL dereference in amdgpu_ras_query_error_status_helper()

...

clk: sunxi-ng: h616: Reparent GPU clock during frequency changes

...

NVIDIA DGX和NVIDIA HGX 安全漏洞

NVIDIA DGX and NVIDIA HGX are both products of NVIDIA Corporation, U.S.A. NVIDIA DGX is a high-performance workstation for deep learning applications.NVIDIA HGX is a modular GPU acceleration platform. A security vulnerability exists in NVIDIA DGX and NVIDIA HGX that stems from an improperly...

SUSE SLES15: nv-prefer-signed-open-driver / etc (SUSE-SU-2025:03062-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03062-1 advisory. Updated CUDA variant to 580.65.06: - CVE-2025-23277: Fixed access memory outside bounds permitted under normal use cases in NVIDIA...

drm/amdgpu: fix use-after-free during gpu recovery

...

USN-7737-1 linux-azure, linux-azure-6.8, linux-azure-nvidia vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - S390 architecture; - x86 architecture; - Block layer subsystem; -...

USN-7737-1: Linux kernel (Azure) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - S390 architecture; - x86 architecture; - Block layer subsystem; -...

Linux Distros Unpatched Vulnerability : CVE-2023-31018

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NVIDIA GPU Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user can cause a NULL-pointer...

Linux Distros Unpatched Vulnerability : CVE-2025-38521

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/imagination: Fix kernel crash when hard resetting the GPU The GPU hard reset sequence...

Linux Distros Unpatched Vulnerability : CVE-2022-2832

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Blender 3.3.0. A null pointer dereference exists in source/blender/gpu/opengl/glbackend.cc that may lead to loss of confidentiality and...

Ubuntu 25.04 : Linux kernel (Azure) vulnerabilities (USN-7721-1)

"The remote Ubuntu 25.04 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7721-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in th...