CVE-2025-21780

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table()

It malicious user provides a small pptable through sysfs and then a bigger pptable, it may cause buffer overflow attack in function smu_sys_set_pp_table().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux137d63abbf6a0859e79b662e81d21170ecb75e59 < 3484ea33157bc7334f57e64826ec5a4bf992151aaffected
LinuxLinux137d63abbf6a0859e79b662e81d21170ecb75e59 < e43a8b9c4d700ffec819c5043a48769b3e7d9cabaffected
LinuxLinux137d63abbf6a0859e79b662e81d21170ecb75e59 < 2498d2db1d35e88a2060ea191ae75dce853dd084affected
LinuxLinux137d63abbf6a0859e79b662e81d21170ecb75e59 < 231075c5a8ea54f34b7c4794687baa980814e6deaffected
LinuxLinux137d63abbf6a0859e79b662e81d21170ecb75e59 < 1abb2648698bf10783d2236a6b4a7ca5e8021699affected
LinuxLinux5.2affected
LinuxLinux0 < 5.2unaffected
LinuxLinux6.1.129 <= 6.1.*unaffected
LinuxLinux6.6.79 <= 6.6.*unaffected
LinuxLinux6.12.16 <= 6.12.*unaffected
LinuxLinux6.13.4 <= 6.13.*unaffected
LinuxLinux6.14 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References