CVE-2024-36352

Summary

Improper input validation in the AMD Graphics Driver could allow an attacker to supply a specially crafted pointer, potentially leading to arbitrary writes or denial of service.

Affected Software

VendorProductVersion RangeStatus
AMDAMD Ryzen™ 4000 Series Mobile Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.10.1 (23.19.21.01 pre-RDNA), AMD Software: PRO Edition 24.Q4 (23.19.21.01/23.19.21.04 pre-RDNA)unaffected
AMDAMD Ryzen™ 6000 Series Processors with Radeon™ GraphicsAMD Software: PRO Edition 24.Q4 (24.20.30 RDNA)unaffected
AMDAMD Athlon™ 3000 Series Mobile Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.10.1 (23.19.21.01 pre-RDNA), AMD Software: PRO Edition 24.Q4 (23.19.21.01/23.19.21.04 pre-RDNA)unaffected
AMDAMD Ryzen™ 7040 Series Mobile Processors with Radeon™ GraphicsAMD Software: PRO Edition 24.Q4 (24.20.30 RDNA)unaffected
AMDAMD Ryzen™ 7020 Series Processors with Radeon™ GraphicsAMD Software: PRO Edition 24.Q4 (24.20.30 RDNA)unaffected
AMDAMD Ryzen™ 7045 Series Mobile Processors with Radeon™ GraphicsAMD Software: PRO Edition 24.Q4 (24.20.30 RDNA)unaffected
AMDAMD Ryzen™ 9000 Series Desktop ProcessorsAMD Software: PRO Edition 24.Q4 (24.20.30 RDNA)unaffected
AMDAMD Ryzen™ 4000 Series Desktop ProcessorsAMD Software: Adrenalin Edition 24.10.1 (23.19.21.01 pre-RDNA), AMD Software: PRO Edition 24.Q4 (23.19.21.01/23.19.21.04 pre-RDNA)unaffected
AMDAMD Ryzen™ 7030 Series Mobile Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.10.1 (23.19.21.01 pre-RDNA), AMD Software: PRO Edition 24.Q4 (23.19.21.01/23.19.21.04 pre-RDNA)unaffected
AMDAMD Ryzen™ 7035 Series Processors with Radeon™ GraphicsAMD Software: PRO Edition 24.Q4 (24.20.30 RDNA)unaffected
AMDAMD Ryzen™ 5000 Series Desktop Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.10.1 (23.19.21.01 pre-RDNA), AMD Software: PRO Edition 24.Q4 (23.19.21.01/23.19.21.04 pre-RDNA)unaffected
AMDAMD Ryzen™ 5000 Series Mobile Processors with Radeon™ GraphicsAMD Software: Adrenalin Edition 24.10.1 (23.19.21.01 pre-RDNA), AMD Software: PRO Edition 24.Q4 (23.19.21.01/23.19.21.04 pre-RDNA)unaffected
AMDAMD Ryzen™ 7000 Series Desktop ProcessorsAMD Software: PRO Edition 24.Q4 (24.20.30 RDNA)unaffected
AMDAMD Ryzen™ 8000 Series Desktop ProcessorsAMD Software: PRO Edition 24.Q4 (24.20.30 RDNA)unaffected
AMDAMD Ryzen™ Embedded V2000 Series ProcessorsLTS Kernel 6.12.25unaffected
AMDAMD Radeon™ RX 5000 Series Graphics ProductsAMD Software: Adrenalin Edition 24.10.1 (24.20.19.01 RDNA)unaffected
AMDAMD Radeon™ RX 6000 Series Graphics ProductsAMD Software: Adrenalin Edition 24.10.1 (24.20.19.01 RDNA)unaffected
AMDAMD Radeon™ RX 7000 Series Graphics ProductsAMD Software: Adrenalin Edition 24.10.1 (24.20.19.01 RDNA)unaffected
AMDAMD Radeon™ RX Vega Series Graphics CardsAMD Software: Adrenalin Edition 24.10.1 (23.19.21.01 pre-RDNA), AMD Software: PRO Edition 24.Q4 (23.19.21.01/23.19.21.04 pre-RDNA)unaffected
AMDAMD Radeon™ PRO W5000 Series Graphics ProductsAMD Software: PRO Edition 24.Q4 (24.20.30 RDNA)unaffected
AMDAMD Radeon™ PRO W6000 Series Graphics ProductsAMD Software: PRO Edition 24.Q4 (24.20.30 RDNA)unaffected
AMDAMD Radeon™ PRO W7000 Series Graphics ProductsAMD Software: PRO Edition 24.Q4 (24.20.30 RDNA)unaffected
AMDAMD Radeon™ VIIAMD Software: Adrenalin Edition 24.10.1 (24.20.19.01 RDNA)unaffected
AMDAMD Radeon™ PRO VIIAMD Software: PRO Edition 24.Q4 (24.20.30 RDNA)unaffected
AMDAMD Radeon™ Instinct™ MI25 Graphics ProductsContact your AMD Customer Engineering representativeunaffected
AMDAMD Radeon™ PRO V520 Graphics ProductsContact your AMD Customer Engineering representativeunaffected
AMDAMD Radeon™ PRO V620 Graphics ProductsContact your AMD Customer Engineering representativeunaffected
AMDAMD Radeon™ PRO V710 Graphics ProductsContact your AMD Customer Engineering representativeunaffected

Weaknesses

  • CWE-822: CWE-822 Untrusted Pointer Dereference

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References