amd gpu

CVE-2026-43298, published to the NVD on May 8, 2026, documents a Linux kernel amdgpu driver flaw in which AMDGPU’s VCN 2.5 virtual-function teardown path tried to release a poison interrupt that the VF never enabled. That sounds almost comically narrow, but it is exactly the kind of kernel...

On May 8, 2026, CVE-2026-43318 was published for a Linux kernel amdgpu driver bug in amdgpu_dma_buf_move_notify, where incorrect synchronization during DMA-BUF buffer movement could make an AMD GPU update page tables too early and trigger a likely GPU page fault. The vulnerability is not a...

CVE-2026-31566 is a small Linux kernel fix with a large lesson: in GPU drivers, object lifetime rules are not bookkeeping trivia but security boundaries. The flaw sits in the AMDGPU and AMDKFD integration path, where a fence returned from GPU job scheduling could be released before the code...

CVE-2026-31488 is a reminder that in the Linux graphics stack, seemingly small state-machine mistakes can cascade into serious memory-safety failures. The flaw sits in amdgpu’s Display Core path, where DSC validation incorrectly clears the CRTC mode_changed flag even when other, unrelated mode...

A recently disclosed Linux-kernel vulnerability, tracked as CVE-2023-51042, exposes a fence-related use‑after‑free in the AMD GPU driver (amdgpu) that was fixed upstream in the 6.4.12 stable release; the bug can crash affected kernels or otherwise deny availability to systems that accept...

Microsoft’s short, machine‑readable attestation that “Azure Linux includes this open‑source library and is therefore potentially affected” is accurate for Azure Linux builds — but it is a product‑scoped statement, not proof that no other Microsoft artifact includes the same vulnerable upstream...

A subtle missing check in the Linux kernel’s AMD DRM display code has been cataloged as CVE-2025-38091 and corrected upstream; the defect can produce kernel warnings and, in some circumstances, a local denial-of-service by allowing the display stack to hit an oops when querying a plane...

A subtle NULL‑check omission in the Linux kernel’s AMD GPU display code (drm/amd/display) — tracked as CVE‑2024‑26648 — has been fixed upstream after maintainers discovered that the function edp_setup_replay() dereferenced internal structures before verifying pointer validity, creating a...

A recently disclosed vulnerability in the Linux kernel’s AMD DRM power-management code — tracked as CVE-2025-37769 — allows a carefully crafted input to trigger a division-by-zero inside the SMU11 power-management path, causing kernel crashes and sustained denial-of-service on affected systems...

Microsoft’s brief product mapping for CVE‑2024‑26913 — the Linux kernel fix described as “drm/amd/display: Fix dcn35 8k30 Underflow/Corruption Issue” — is accurate for the artifact it covers, but it is not a blanket assurance that no other Microsoft product can include the same vulnerable...