CVE-2025-21780
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table()
It malicious user provides a small pptable through sysfs and then a bigger pptable, it may cause buffer overflow attack in function smu_sys_set_pp_table().
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 137d63abbf6a0859e79b662e81d21170ecb75e59 < 3484ea33157bc7334f57e64826ec5a4bf992151a | affected |
| Linux | Linux | 137d63abbf6a0859e79b662e81d21170ecb75e59 < e43a8b9c4d700ffec819c5043a48769b3e7d9cab | affected |
| Linux | Linux | 137d63abbf6a0859e79b662e81d21170ecb75e59 < 2498d2db1d35e88a2060ea191ae75dce853dd084 | affected |
| Linux | Linux | 137d63abbf6a0859e79b662e81d21170ecb75e59 < 231075c5a8ea54f34b7c4794687baa980814e6de | affected |
| Linux | Linux | 137d63abbf6a0859e79b662e81d21170ecb75e59 < 1abb2648698bf10783d2236a6b4a7ca5e8021699 | affected |
| Linux | Linux | 5.2 | affected |
| Linux | Linux | 0 < 5.2 | unaffected |
| Linux | Linux | 6.1.129 <= 6.1.* | unaffected |
| Linux | Linux | 6.6.79 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.16 <= 6.12.* | unaffected |
| Linux | Linux | 6.13.4 <= 6.13.* | unaffected |
| Linux | Linux | 6.14 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
References
- https://git.kernel.org/stable/c/3484ea33157bc7334f57e64826ec5a4bf992151a
- https://git.kernel.org/stable/c/e43a8b9c4d700ffec819c5043a48769b3e7d9cab
- https://git.kernel.org/stable/c/2498d2db1d35e88a2060ea191ae75dce853dd084
- https://git.kernel.org/stable/c/231075c5a8ea54f34b7c4794687baa980814e6de
- https://git.kernel.org/stable/c/1abb2648698bf10783d2236a6b4a7ca5e8021699
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.