Primary

Context

AMD MxGPU-Virtualization Driver Heap-Based Buffer Overflow Vulnerability Allowing Denial-of-Service

Vulnerability

Patched

A race condition has been identified in the MxGPU-Virtualization driver's ioctl path. This issue arises from concurrent, unsynchronized access to the global variable amdgv_cmd within an unlocked ioctl handler. An attacker could exploit this vulnerability to induce a heap-based buffer overflow, potentially leading to a denial-of-service condition within the affected system context.

Impact

Exploitation of this vulnerability can cause a heap-based buffer overflow, leading to a denial-of-service condition in the vulnerable system context.

Remediation

Users are advised to update to GIM Driver version 8.4, which will be released on September 16, 2025.

Added: May 15, 2026, 5:20 AM

Updated: May 15, 2026, 5:20 AM

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

3.1

exploitability

2.9

remediation

7.7

relevance

8.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.2

impact

3.1

exploitability

2.9

remediation

7.7

relevance

8.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AMD MxGPU-Virtualization Driver Heap-Based Buffer Overflow Vulnerability Allowing Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

AMD Instinct MI210

AMD Instinct MI250

AMD Instinct MI300A

AMD Instinct MI300X

AMD Instinct MI308X

AMD Instinct MI325X

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating