32 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Call dcstreamrelease for removing the link enc assignment. Reason A porting error caused the stream assignment for the link to be retained instead of being released—resulting in a memory leak. How The issue was...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Added a signal type check for dcn401 getphyd32clksrc Attempting to access link enc on a dpia link will cause a crash...
CVE-2026-43243
A flaw was found in the drm/amd/display component of the Linux kernel. A missing signal type check in the dcn401 getphyd32clksrc function, when attempting to access link encoder link enc on a DisplayPort Interoperability and Compliance Association DPIA link, can lead to a system crash. This...
CVE-2026-43243
CVE-2026-43243 affects the Linux kernel drm/amd/display subsystem, specifically the dcn401 get_phyd32clk_src path, where missing signal type checks can cause a crash when accessing a DP link on DPIA. Connected OSV entries show Root and Debian/Ubuntu patches applied to rootio-linux (Ubuntu 22.04/2...
PT-2026-37583
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A crash occurs in the AMD Linux display driver when attempting to access the link enc on a dpia link. This issue is related to a missing signal type check in the get phyd32clk src functi...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix out-of-bounds access in 'dcn21linkencodercreate' An issue was identified in the dcn21linkencodercreate function where an out-of-bounds access could occur when the hpdsource index was used to reference the...
CVE-2025-40354
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: increase max link count and fix link-enc NULL pointer access why 1. dc-linksMAXLINKS array size smaller than actual requested. maxconnector + maxdpia + 4 virtual = 14. increase from 12 to 14. 2. hwinit access nul...
CVE-2025-40354
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: increase max link count and fix link-enc NULL pointer access why 1. dc-linksMAXLINKS array size smaller than actual requested. maxconnector + maxdpia + 4 virtual = 14. increase from 12 to 14. 2. hwinit access nul...
CVE-2025-40354 drm/amd/display: increase max link count and fix link->enc NULL pointer access
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: increase max link count and fix link-enc NULL pointer access why 1. dc-linksMAXLINKS array size smaller than actual requested. maxconnector + maxdpia + 4 virtual = 14. increase from 12 to 14. 2. hwinit access nul...
CVE-2025-40354
CVE-2025-40354 affects the Linux kernel DRM/AMD display path. The fix increases the max link count (dc->links) from 12 to 14 to prevent an access overrun, and prevents a NULL pointer dereference to enc in link->enc for dpia non display_endpoint during hw_init. The vulnerability stemmed from...
PT-2025-51570
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the DRM/AMD display subsystem. Specifically, the dc-linksMAX LINKS array size was insufficient, leading to potential issues. Additionally, the hw...
drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create'
...
Astra Linux - уязвимость в linux-6.12
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix out-of-bound accesses WHAT & HOW hpostreamtolinkencodermapping has size MAXHPODP2ENCODERS=4, but location can have size up to 6. As a result, it is necessary to check location against MAXHPODP2ENCODERS...
DEBIAN-CVE-2025-21985
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix out-of-bound accesses WHAT & HOW hpostreamtolinkencodermapping has size MAXHPODP2ENCODERS=4, but location can have size up to 6. As a result, it is necessary to check location against MAXHPODP2ENCODERS...
SUSE CVE-2022-49203
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix double free during GPU reset on DC streams Why The issue only occurs during the GPU reset code path. We first backup the current state prior to commiting 0 streams internally from DM to DC. This state backup...
SUSE CVE-2022-49233
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Call dcstreamrelease for remove link enc assignment Why A porting error resulted in the stream assignment for the link being retained without being released - a memory leak. How Fix the porting error by adding ba...
DEBIAN-CVE-2022-49233
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Call dcstreamrelease for remove link enc assignment Why A porting error resulted in the stream assignment for the link being retained without being released - a memory leak. How Fix the porting error by adding ba...
DEBIAN-CVE-2022-49203
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix double free during GPU reset on DC streams Why The issue only occurs during the GPU reset code path. We first backup the current state prior to commiting 0 streams internally from DM to DC. This state backup...
CVE-2022-49203
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix double free during GPU reset on DC streams Why The issue only occurs during the GPU reset code path. We first backup the current state prior to commiting 0 streams internally from DM to DC. This state backup...
UBUNTU-CVE-2022-49203
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix double free during GPU reset on DC streams Why The issue only occurs during the GPU reset code path. We first backup the current state prior to commiting 0 streams internally from DM to DC. This state backup...