← back
CVE-2022-49365

drm/amdgpu: Off by one in dm_dmub_outbox1_low_irq()

CVSS 5.5 MEDIUMEPSS 0.2%CWE-193
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.5EPSS 0.2%KEV nãoPoC Patch
Lifecycle
26 Feb 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Off by one in dm_dmub_outbox1_low_irq() The > ARRAY_SIZE() should be >= ARRAY_SIZE() to prevent an out of bounds access.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected products
Linux · Linux

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://git.kernel.org/stable/c/607c5cd1a08e196d9f2bd3b25a8083ed27ad7cebhttps://git.kernel.org/stable/c/a35faec3db0e13aac8ea720bc1a3503081dd5a3dhttps://git.kernel.org/stable/c/b0808b7a04157b3f56e919f27023fec37a075fadhttps://git.kernel.org/stable/c/ec9ec3bc08b18c5b1b2feafd306ea7c348013898