Volerion logoVolerion
Volerion logoVolerion

Linux Kernel AMDGPU Error Handling Vulnerability in PCI Slot Reset

Vulnerability

A vulnerability in the Linux kernel's AMDGPU driver has been addressed, concerning the error handling process after a PCI slot reset. If a device fails to recover from the reset, the error handling routine could make decisions based on an uninitialized pointer, potentially leading to the access of an uninitialized list. This issue has been fixed by properly initializing the list and pointer, allowing for correct error management and releasing a lock acquired during the error handling process.

Impact

The vulnerability could lead to undefined behavior by allowing access to uninitialized memory, which could be exploited to cause a system crash or other unintended effects.

Reproduction

The vulnerability can be reproduced by triggering a PCI slot reset on an affected AMDGPU device that does not recover properly. This will cause the error handling routine to access an uninitialized pointer, leading to the vulnerability.

Remediation

Users can update to the latest version of the Linux kernel where this vulnerability has been fixed.

Added: Mar 25, 2026, 12:04 PM
Updated: Mar 25, 2026, 12:04 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
3.9
remediation
7.7
relevance
4.7
threat
4.8
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.