CVE-2025-38426

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: Add basic validation for RAS header

If RAS header read from EEPROM is corrupted, it could result in trying to allocate huge memory for reading the records. Add some validation to header fields.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux64f55e629237e4752db18df4d6969a69e3f4835a < e1903358b2152f5d64a83e796bb776aba0d3628daffected
LinuxLinux64f55e629237e4752db18df4d6969a69e3f4835a < 0479268fdfaaff6e15d69e8a8387410f36d1b793affected
LinuxLinux64f55e629237e4752db18df4d6969a69e3f4835a < b52f52bc5ba9feb026c0be600f8ac584fd12d187affected
LinuxLinux64f55e629237e4752db18df4d6969a69e3f4835a < 5df0d6addb7e9b6f71f7162d1253762a5be9138eaffected
LinuxLinux5.4affected
LinuxLinux0 < 5.4unaffected
LinuxLinux6.6.130 <= 6.6.*unaffected
LinuxLinux6.12.78 <= 6.12.*unaffected
LinuxLinux6.15.4 <= 6.15.*unaffected
LinuxLinux6.16 <= *unaffected

Weaknesses

References