CVE-2021-26382

Summary

An attacker with root account privileges can load any legitimately signed firmware image into the Audio Co-Processor (ACP,) irrespective of the respective signing key being declared as usable for authenticating an ACP firmware image, potentially resulting in a denial of service.

Affected Software

VendorProductVersion RangeStatus
AMDRyzen™ Seriesvariousaffected
AMDAthlon™ Seriesvariousaffected

Weaknesses

  • tbd

ADP Enrichment

CVE Program Container

Additional References

References