Linux Kernel Block Sequence Buffer Overflow Vulnerability in AMD Display Driver

Vulnerability

A buffer overflow vulnerability has been identified in the Linux kernel's AMD display driver. This issue arises in the hardware state machine sequence building process, where it's possible to generate more than 50 steps for a 6-pipe ASIC with all pipes in one MPC chain. The overflow corrupts the block_sequence_steps, leading to a crash. The vulnerability has been addressed by increasing the block_sequence array size from 50 to 100 items, which is sufficient to accommodate the upper bound of possible steps for a 6-pipe ASIC.

Impact

Exploitation of this vulnerability leads to a buffer overflow, causing a crash by corrupting the block_sequence_steps.

Added: Jun 18, 2025, 10:22 AM

Updated: Jun 18, 2025, 10:22 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Block Sequence Buffer Overflow Vulnerability in AMD Display Driver

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating