CVE-2024-39291 | Linux Kernel up to 6.6.32/6.9.3 amdgpu cp_compute_microcode buffer overflow (19bd9537b6bc/f1b6a016dfa4/acce6479e30f)

Posted by Angelo Barbosa | Jun 24, 2024 | CVE

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.6.32/6.9.3. Affected is the function cp_compute_microcode of the component amdgpu. The manipulation leads to buffer overflow.

This vulnerability is traded as CVE-2024-39291. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39291 | Linux Kernel up to 6.6.32/6.9.3 amdgpu cp_compute_microcode buffer overflow (19bd9537b6bc/f1b6a016dfa4/acce6479e30f)

Related Posts

CVE-2024-34206 | Totolink CP450 4.1.0cu.747_B20191224 setWebWlanIdx webWlanIdx command injection

CVE-2024-36496 | Faronics WINSelect Standard/WINSelect Enterprise prior 8.30.xx.903 Configuration File hard-coded credentials

CVE-2024-1546 | Mozilla Firefox up to 115.7 Networking Channel out-of-bounds

CVE-2024-48989 | Bosch Rexroth IndraDrive FWA-INDRV PROFINET Stack resource consumption (icsa-24-312-03)