Linux Kernel AMDGPU Invalid Schedule Access Vulnerability

Vulnerability

A vulnerability in the Linux kernel's AMDGPU graphics driver has been addressed. The issue arose from improper handling of the scheduling job structure, which could lead to system crashes. When a command stream (CS) failed validation, the job's scheduling information was incorrectly managed, causing a crash by referencing an invalid ring value. This vulnerability has been fixed by ensuring that a null pointer is passed to the function that frees the command buffer, preventing the system from crashing. The next update will remove the ring parameter entirely.

Impact

This vulnerability could lead to system crashes by causing the graphics driver to reference invalid data, disrupting normal operations and potentially causing a denial of service.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel AMDGPU Invalid Schedule Access Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating