Impact
The flaw originates in the AMDGPU driver’s user queue validation routine. When a page‑mapping request fails, the driver calls drm_exec_fini twice on the same execution object. Because drm_exec_fini is not idempotent, the second call attempts to free already‑freed structures and can corrupt kernel memory, ultimately causing a crash that results in a denial‑of‑service. The flaw is a double‑free and use‑after‑free issue (CWE‑1341).
Affected Systems
Any Linux system running a kernel revision that contains the unpatched amdgpu code is potentially impacted. The advisory does not specify affected kernel versions, so any distribution whose kernel has not incorporated commit 2802952e4a07306da6ebe813ff1acacc5691851a remains vulnerable. This includes the upstream kernel shipped with many mainstream Linux distributions that enable AMDGPU support out of the box.
Risk and Exploitability
The CVSS score of 7.8 indicates moderate‑to‑high severity, while the EPSS score of <1% suggests a low likelihood of exploitation at this not listed in the CISA Known Exploited Vulnerabilities catalog. Exploitation would likely require a driver fault during AMDGPU operation—such as a failed page mapping—that triggers the error path. No public exploits have been documented, but the kernel panic that can result from the double cleanup presents a serious reliability risk and warrants immediate patching.
OpenCVE Enrichment