Buffer overflow in Amd Epyc™ 7002 Series Processors

CVE-2024-21961

Improper restriction of operations within the bounds of a memory buffer in PCIe® Link could allow an attacker with access to a guest virtual machine to potentially perform a denial of service attack against the host resulting in loss of av…

Vulnerability class: Buffer Overflow

EPSS: 0.000 (5.6th percentile) — read the EPSS interpretation.

Affected products

Amd Epyc™ 7002 Series Processors — versions No Fix Planned
Amd Epyc™ Embedded 7002 Series Processors — versions No fix planned
Amd Ryzen™ 3000 Series Desktop Processors — versions Errata #1165,1166,1526
Amd Ryzen™ 4000 Series Desktop Processors — versions Errata #1165,1166,1526
Amd Ryzen™ 4000 Series Mobile Processors With Radeon™ Graphics — versions Errata #1165,1166,1526
Amd Ryzen™ 5000 Series Desktop Processors — versions Errata #1165,1166,1526
Amd Ryzen™ 5000 Series Desktop Processors With Radeon™ Graphics — versions Errata #1165,1166,1526
Amd Ryzen™ 5000 Series Mobile Processors With Radeon™ Graphics — versions Errata #1165,1166,1526
Amd Ryzen™ 6000 Series Processors With Radeon™ Graphics — versions Errata #1526
Amd Ryzen™ 7000 Series Desktop Processors — versions Errata #1526

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References