First published: Wed Nov 09 2022(Updated: )
Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel.
Credit: psirt@amd.com
Affected Software | Affected Version | How to fix |
---|---|---|
amd enterprise driver | <22.10.20 | |
amd radeon pro software | <22.q2 | |
AMD Radeon Software | <22.5.2 | |
amd radeon pro w5500 | ||
AMD Radeon Pro W5500X | ||
amd radeon pro w5700 | ||
AMD Radeon Pro W5700X Firmware | ||
AMD Radeon Pro W6300M | ||
AMD Radeon Pro W6400 Firmware | ||
AMD Radeon Pro W6500M | ||
AMD Radeon Pro W6600 | ||
AMD Radeon Pro W6600M | ||
AMD Radeon Pro W6600X | ||
amd Radeon pro w6800 | ||
AMD Radeon Pro W6800X | ||
AMD Radeon Pro W6800X Duo | ||
AMD Radeon Pro W6900X | ||
AMD Radeon RX 5300 Firmware | ||
AMD Radeon RX 5300 Firmware | ||
AMD Radeon RX 5300M Firmware | ||
AMD Radeon RX 5500 | ||
AMD Radeon RX 5500 XT Firmware | ||
AMD Radeon RX 5500M | ||
AMD Radeon RX 5600 | ||
AMD Radeon RX 5600 | ||
AMD Radeon RX 5600M | ||
AMD Radeon RX 5700 | ||
AMD Radeon RX 5700 XT | ||
AMD Radeon RX 5700m | ||
AMD Radeon RX 6300M | ||
AMD Radeon RX 6400 | ||
AMD Radeon RX 6500 XT | ||
AMD Radeon RX 6500M | ||
AMD Radeon RX 6600 | ||
AMD Radeon RX 6600 XT | ||
AMD Radeon RX 6600M | ||
AMD Radeon RX 6600s | ||
AMD Radeon RX 6650 XT | ||
AMD Radeon RX 6650M | ||
AMD Radeon RX 6650M XT | ||
AMD Radeon RX 6700 | ||
AMD Radeon RX 6700 XT | ||
AMD Radeon RX 6700M | ||
AMD Radeon RX 6700s | ||
amd radeon rx 6750 xt | ||
AMD Radeon RX 6800 | ||
AMD Radeon RX 6800 XT Firmware | ||
AMD Radeon RX 6800m | ||
AMD Radeon RX 6800s | ||
AMD Radeon RX 6850M XT | ||
AMD Radeon RX 6900 XT | ||
AMD Radeon RX 6950XT Firmware | ||
AMD Radeon RX Vega 56 | ||
AMD Radeon RX Vega 56 Firmware | ||
AMD Radeon RX Vega 64 | ||
AMD Radeon RX Vega 64 | ||
AMD Ryzen 3 5300GE Firmware | ||
AMD Ryzen 3 5300GE Firmware | ||
AMD Ryzen 3 5300G Firmware | ||
AMD Ryzen 3 5300G Firmware | ||
AMD Ryzen 5 5600GE Firmware | ||
AMD Ryzen 5 5600GE Firmware | ||
AMD Ryzen 5 5600G Firmware | ||
AMD Ryzen 5 5600GT Firmware | ||
AMD Ryzen 7 5700GE Firmware | ||
AMD Ryzen 7 5700GE Firmware | ||
AMD Ryzen 7 5700G Firmware | ||
AMD Ryzen 7 5700G Firmware | ||
AMD Ryzen 3 5300U Firmware | ||
AMD Ryzen 3 5300U Firmware | ||
AMD Ryzen 5 5500U Firmware | ||
AMD Ryzen 5 5500U | ||
AMD Ryzen 7 5700U Firmware | ||
AMD Ryzen 7 5700U Firmware | ||
AMD Ryzen 3 5400U Firmware | ||
AMD Ryzen 3 5400U | ||
AMD Ryzen 5 5560U Firmware | ||
AMD Ryzen 5 5560U Firmware | ||
AMD Ryzen 5 5600U Firmware | ||
AMD Ryzen 5 5600U | ||
AMD Ryzen 5 5600H Firmware | ||
AMD Ryzen 5 5600H | ||
AMD Ryzen 5 5600HS Firmware | ||
AMD Ryzen 5 5600HS | ||
AMD Ryzen 7 5800U Firmware | ||
AMD Ryzen 7 5800U Firmware | ||
AMD Ryzen 7 5800H Firmware | ||
AMD Ryzen 7 5800H Firmware | ||
AMD Ryzen 7 5800HS Firmware | ||
AMD Ryzen 7 5800HS Firmware | ||
AMD Ryzen 9 5900HS Firmware | ||
AMD Ryzen 9 5900HS Firmware | ||
AMD Ryzen 9 5900HX Firmware | ||
AMD Ryzen 9 5900HX | ||
AMD Ryzen 9 5980HS Firmware | ||
AMD Ryzen 9 5980HS Firmware | ||
AMD Ryzen 9 5980HX | ||
AMD Ryzen 9 5980HX Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-26391 is rated as high severity due to its potential to allow code execution in a Trusted Application or the OS/kernel.
To fix CVE-2021-26391, update affected AMD software to the latest versions as specified in the product security bulletin.
CVE-2021-26391 impacts specific versions of AMD Enterprise Driver, Radeon Pro Software, and Radeon Software up to certain versions.
Currently, no specific workaround is recommended for CVE-2021-26391 other than applying the software updates.
Users of affected AMD graphics and enterprise software products are impacted by CVE-2021-26391.