GHSA-jm43-c5vr-q3fg

Опубликовано: 27 фев. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table()

It malicious user provides a small pptable through sysfs and then a bigger pptable, it may cause buffer overflow attack in function smu_sys_set_pp_table().

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table()

It malicious user provides a small pptable through sysfs and then a bigger pptable, it may cause buffer overflow attack in function smu_sys_set_pp_table().

Ссылки

EPSS

Процентиль: 8%

0.00031

Низкий

7.8 High

CVSS3

CVE ID

CVE-2025-21780

Дефекты

CWE-120

Связанные уязвимости

CVE-2025-21780

CVSS3: 7.8

ubuntu

8 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table() It malicious user provides a small pptable through sysfs and then a bigger pptable, it may cause buffer overflow attack in function smu_sys_set_pp_table().