CVE-2025-38426

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2025-38426

Severity

Unknown

Summary

drm/amdgpu: Add basic validation for RAS header

Description

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: Add basic validation for RAS header

If RAS header read from EEPROM is corrupted, it could result in trying to allocate huge memory for reading the records. Add some validation to header fields.

References

https://images.chainguard.dev/security/CGA-7rqr-72r8-prpc
https://github.com/advisories/GHSA-7m5p-v483-rc7r
https://images.chainguard.dev/security/CGA-99qp-m4p3-fgf4
https://images.chainguard.dev/security/CGA-wvg4-ff88-fxjv
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
https://git.kernel.org/stable/c/5df0d6addb7e9b6f71f7162d1253762a5be9138e
https://git.kernel.org/stable/c/b52f52bc5ba9feb026c0be600f8ac584fd12d187

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

CVE-2025-38426

Severity

Summary

Description

References

Affected packages

The trusted source for open source

Product

Solutions

Customers

Resources

Company