Vulnerability in Amd Radeon Rx 5000 Series & Pro W5000

CVE-2021-26393

Insufficient memory cleanup in the AMD Secure Processor (ASP) Trusted Execution Environment (TEE) may allow an authenticated attacker with privileges to generate a valid signed TA and potentially poison the contents of the process memory w…

EPSS: 0.001 (32.5th percentile) — read the EPSS interpretation.

Affected products

Amd Radeon Rx 5000 Series & Pro W5000 — versions AMD Radeon Software, AMD Radeon Pro Software Enterprise, Enterprise Driver
Amd Radeon Rx 6000 Series & Pro W6000 — versions AMD Radeon Software, AMD Radeon Pro Software Enterprise, Enterprise Driver
Amd Ryzen™ Embedded R1000 — versions various
Amd Ryzen™ Embedded R2000 — versions various
Amd Ryzen™ Embedded V1000 — versions various
Amd Ryzen™ Embedded V2000 — versions various

References

www.amd.com/en/corporate/product-security/bulletin/amd-sb-1029
www.amd.com/en/corporate/product-security/bulletin/amd-sb-5001