Skip to main content

Linux Kernel CVE-2026-43369

| EUVDEUVD-2026-28675 MEDIUM
NULL Pointer Dereference (CWE-476)
2026-05-08 Linux GHSA-9m9h-79g2-4xrr
5.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
SUSE
MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

4
Analysis Generated
May 15, 2026 - 17:32 vuln.today
CVSS changed
May 15, 2026 - 15:22 NVD
5.5 (MEDIUM)
Patch available
May 08, 2026 - 16:18 EUVD
CVE Published
May 08, 2026 - 14:21 nvd
UNKNOWN (no severity yet)

DescriptionCVE.org

In the Linux kernel, the following vulnerability has been resolved:

drm/amd: Fix NULL pointer dereference in device cleanup

When GPU initialization fails due to an unsupported HW block IP blocks may have a NULL version pointer. During cleanup in amdgpu_device_fini_hw, the code calls amdgpu_device_set_pg_state and amdgpu_device_set_cg_state which iterate over all IP blocks and access adev->ip_blocks[i].version without NULL checks, leading to a kernel NULL pointer dereference.

Add NULL checks for adev->ip_blocks[i].version in both amdgpu_device_set_cg_state and amdgpu_device_set_pg_state to prevent dereferencing NULL pointers during GPU teardown when initialization has failed.

(cherry picked from commit b7ac77468cda92eecae560b05f62f997a12fe2f2)

AnalysisAI

A NULL pointer dereference in Linux kernel AMD GPU driver cleanup code causes local denial of service when GPU initialization fails on systems with unsupported AMD hardware blocks. Local authenticated users with low privileges can trigger kernel crashes during device teardown sequences. The vulnerability affects multiple stable kernel versions (6.18.16-6.18.19, 6.19.6-6.19.9) with patches available from upstream. EPSS score of 0.02% (4th percentile) indicates very low observed exploitation probability, and no active exploitation or public exploits are confirmed. Real-world impact is limited to systems with specific AMD GPU hardware experiencing initialization failures, making this primarily a reliability issue rather than a direct security threat.

Technical ContextAI

This vulnerability affects the AMD GPU driver's Direct Rendering Manager (DRM) subsystem in the Linux kernel, specifically the AMDGPU device initialization and cleanup paths. The issue stems from CWE-476 (NULL Pointer Dereference) in two functions: amdgpu_device_set_pg_state and amdgpu_device_set_cg_state. During GPU initialization, when an unsupported hardware block is encountered, the kernel populates the IP blocks array but may leave version pointers NULL. The cleanup routine in amdgpu_device_fini_hw unconditionally iterates over all IP blocks and dereferences the version pointer without NULL validation. The affected CPE (cpe:2.3:a:linux:linux) indicates this impacts the core kernel AMD GPU driver across multiple stable kernel branches. The CVSS vector AV:L/AC:L/PR:L/UI:N indicates local access with low attack complexity and low privileges required, but the S:U (unchanged scope) means the crash is contained to the kernel component handling the GPU device.

RemediationAI

Upgrade to patched Linux kernel versions that include the fix commit b7ac77468cda92eecae560b05f62f997a12fe2f2 (cherry-picked across stable branches). For stable kernel users: upgrade to Linux 6.18.19 or later if running 6.18.x series, upgrade to Linux 6.19.9 or later if running 6.19.x series. Specific fix commits are available at https://git.kernel.org/stable/c/43025c941aced9a9009f9ff20eea4eb78c61deb8, https://git.kernel.org/stable/c/767cd24d3c4ae847688877def4891943f6611ecd, and https://git.kernel.org/stable/c/062ea905fff7756b2e87143ffccaece5cdb44267. The patch adds NULL pointer validation checks in amdgpu_device_set_cg_state and amdgpu_device_set_pg_state functions before dereferencing IP block version pointers. If immediate kernel upgrade is not feasible, consider temporary workarounds: disable AMD GPU driver module loading via kernel boot parameters (modprobe.blacklist=amdgpu) if the GPU is non-essential, though this prevents GPU functionality entirely. Alternatively, avoid loading or hot-plugging unsupported AMD GPU hardware that triggers initialization failures. These workarounds trade GPU functionality for system stability and are only appropriate for non-production or non-GPU-dependent workloads. Monitor kernel logs (dmesg) for AMDGPU initialization errors as indicators of vulnerable code paths being exercised.

More in Amd

View all
CVE-2021-22986 CRITICAL POC
9.8 Mar 31

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, and 12.

CVE-2020-6103 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6102 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6101 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6100 CRITICAL POC
9.9 Jul 20

An exploitable memory corruption vulnerability exists in AMD atidxx64.dll 26.20.15019.19000 graphics driver. Rated criti

CVE-2018-6546 CRITICAL POC
9.8 Apr 13

plays_service.exe in the plays.tv service before 1.27.7.0, as distributed in AMD driver-installation packages and Gaming

CVE-2021-3653 HIGH POC
8.8 Sep 29

A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. Rated high severity (CVSS 8.8), this vu

CVE-2020-12138 HIGH POC
8.8 Apr 27

AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of se

CVE-2019-5098 HIGH POC
8.6 Dec 05

An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13001.29010. Rated high

CVE-2015-7724 HIGH POC
7.8 Jun 07

AMD fglrx-driver before 15.9 allows local users to gain privileges via a symlink attack. Rated high severity (CVSS 7.8),

CVE-2015-7723 HIGH POC
7.8 Jun 07

AMD fglrx-driver before 15.7 allows local users to gain privileges via a symlink attack. Rated high severity (CVSS 7.8),

CVE-2023-1048 HIGH POC
7.8 Feb 26

A vulnerability, which was classified as critical, has been found in TechPowerUp Ryzen DRAM Calculator 1.2.0.5.sys. Rate

Vendor StatusVendor

SUSE

Severity: Medium
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed

Share

CVE-2026-43369 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy