CVE-2026-23163
Severity
5.5MEDIUM
EPSS
0.0%
top 97.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedFeb 14
Latest updateApr 13
Description
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove
On APUs such as Raven and Renoir (GC 9.1.0, 9.2.2, 9.3.0), the ih1 and
ih2 interrupt ring buffers are not initialized. This is by design, as
these secondary IH rings are only available on discrete GPUs. See
vega10_ih_sw_init() which explicitly skips ih1/ih2 initialization when
AMD_IS_APU is set.
However, amdgpu_gmc_filter_faults_remove() unconditional…
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages3 packages
▶CVEListV5linux/linuxdd299441654fd8209056c7985ddf2373ebaba6ed — c74e2dbb5316898fb2113a8ea3a93b27698dbf68+4
Patches
🔴Vulnerability Details
4VulDB▶
Linux Kernel up to 6.6.122/6.12.68/6.18.8 amdgpu vega10_ih_sw_init ring[] null pointer dereference (Nessus ID 299342 / WID-SEC-2026-0421)↗2026-04-13
GHSA▶
GHSA-3x2r-29rp-vh66: In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove
On A↗2026-02-14
OSV▶
CVE-2026-23163: In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove On APU↗2026-02-14