CVE-2021-26392
published 2022-11-09CVE-2021-26392: Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading a malicious TA.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amd | amd_radeon_rx_5000_series_pro_w5000_series | >= AMD Radeon Pro Software Enterprise < 22.Q2 | 22.Q2 |
| amd | amd_radeon_rx_5000_series_pro_w5000_series | >= AMD Radeon Software < 22.5.2 | 22.5.2 |
| amd | amd_radeon_rx_5000_series_pro_w5000_series | >= Enterprise Driver < 22.10.20 | 22.10.20 |
| amd | amd_radeon_rx_6000_series_pro_w6000_series | >= AMD Radeon Pro Software Enterprise < 22.Q2 | 22.Q2 |
| amd | amd_radeon_rx_6000_series_pro_w6000_series | >= AMD Radeon Software < 22.5.2 | 22.5.2 |
| amd | amd_radeon_rx_6000_series_pro_w6000_series | >= Enterprise Driver < 22.10.20 | 22.10.20 |
| amd | amd_ryzen_embedded_5000 | — | — |
| amd | amd_ryzen_embedded_r1000 | — | — |
| amd | amd_ryzen_embedded_r2000 | — | — |
| amd | amd_ryzen_embedded_v1000 | — | — |
| amd | amd_ryzen_embedded_v2000 | — | — |
| amd | amd_ryzen_embedded_v3000 | — | — |
| amd | enterprise_driver | < 22.10.20 | 22.10.20 |
| amd | radeon_pro_software | < 22.q2 | 22.q2 |
| amd | radeon_software | < 22.5.2 | 22.5.2 |