AMD Privilege Escalation Vulnerability via Remote Code Execution in Graphics Drivers

A privilege escalation vulnerability has been identified in the AMDGV_CMD_GET_DIAG_DATA ioctl handler. This out-of-bounds write issue could allow a local user to execute remote code, potentially leading to unauthorized access or elevated privileges. The vulnerability affects several AMD graphics and datacenter accelerator products, including the AMD Instinct MI210, MI250, MI300A, MI300X, MI308X, MI325X, and various Radeon PRO graphics cards. The issue arises from improper memory handling in the graphics drivers, creating an opportunity for local users to manipulate memory and execute arbitrary code with elevated rights.

Impact

Exploitation of this vulnerability could result in unauthorized privilege escalation, allowing a local user to gain elevated rights and execute arbitrary code with those privileges.

Remediation

Users are advised to update to GIM Driver version 8.4 or ROCm version 7.0.1. For AMD Radeon PRO graphics cards, contact an AMD Customer Engineering representative for guidance.