Impact
An out-of-bounds read occurs in the Linux kernel DRM AMD display driver when the aux_rd_interval array, declared with seven elements, is accessed with an offset value of eight reported by a sink. This results in a read of aux_rd_interval[7], which is outside the allocated bounds, potentially exposing kernel memory contents. The flaw does not grant code execution but can leak data that could be leveraged in further attacks.
Affected Systems
All Linux kernel releases that incorporate the drm/amd/display driver are affected, regardless of distribution. The vulnerability exists in the kernel core and is not limited to a specific vendor or kernel version in the available data.
Risk and Exploitability
No CVSS score is supplied in the CVE data, so a formal severity rating cannot be assigned from the information provided. The EPSS score is unavailable, and the vulnerability is not listed in CISA KEV, indicating no documented exploitation in the wild. The attack requires a display device that supports eight LTTPR repeaters; such configurations are uncommon, which may reduce the likelihood of exploitation but do not eliminate it if the target hardware is present.
OpenCVE Enrichment