7.8
Advisory Published
Updated

CVE-2021-26391

First published: Wed Nov 09 2022(Updated: )

Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel.

Credit: psirt@amd.com

Affected SoftwareAffected VersionHow to fix
amd enterprise driver<22.10.20
amd radeon pro software<22.q2
AMD Radeon Software<22.5.2
amd radeon pro w5500
AMD Radeon Pro W5500X
amd radeon pro w5700
AMD Radeon Pro W5700X Firmware
AMD Radeon Pro W6300M
AMD Radeon Pro W6400 Firmware
AMD Radeon Pro W6500M
AMD Radeon Pro W6600
AMD Radeon Pro W6600M
AMD Radeon Pro W6600X
amd Radeon pro w6800
AMD Radeon Pro W6800X
AMD Radeon Pro W6800X Duo
AMD Radeon Pro W6900X
AMD Radeon RX 5300 Firmware
AMD Radeon RX 5300 Firmware
AMD Radeon RX 5300M Firmware
AMD Radeon RX 5500
AMD Radeon RX 5500 XT Firmware
AMD Radeon RX 5500M
AMD Radeon RX 5600
AMD Radeon RX 5600
AMD Radeon RX 5600M
AMD Radeon RX 5700
AMD Radeon RX 5700 XT
AMD Radeon RX 5700m
AMD Radeon RX 6300M
AMD Radeon RX 6400
AMD Radeon RX 6500 XT
AMD Radeon RX 6500M
AMD Radeon RX 6600
AMD Radeon RX 6600 XT
AMD Radeon RX 6600M
AMD Radeon RX 6600s
AMD Radeon RX 6650 XT
AMD Radeon RX 6650M
AMD Radeon RX 6650M XT
AMD Radeon RX 6700
AMD Radeon RX 6700 XT
AMD Radeon RX 6700M
AMD Radeon RX 6700s
amd radeon rx 6750 xt
AMD Radeon RX 6800
AMD Radeon RX 6800 XT Firmware
AMD Radeon RX 6800m
AMD Radeon RX 6800s
AMD Radeon RX 6850M XT
AMD Radeon RX 6900 XT
AMD Radeon RX 6950XT Firmware
AMD Radeon RX Vega 56
AMD Radeon RX Vega 56 Firmware
AMD Radeon RX Vega 64
AMD Radeon RX Vega 64
AMD Ryzen 3 5300GE Firmware
AMD Ryzen 3 5300GE Firmware
AMD Ryzen 3 5300G Firmware
AMD Ryzen 3 5300G Firmware
AMD Ryzen 5 5600GE Firmware
AMD Ryzen 5 5600GE Firmware
AMD Ryzen 5 5600G Firmware
AMD Ryzen 5 5600GT Firmware
AMD Ryzen 7 5700GE Firmware
AMD Ryzen 7 5700GE Firmware
AMD Ryzen 7 5700G Firmware
AMD Ryzen 7 5700G Firmware
AMD Ryzen 3 5300U Firmware
AMD Ryzen 3 5300U Firmware
AMD Ryzen 5 5500U Firmware
AMD Ryzen 5 5500U
AMD Ryzen 7 5700U Firmware
AMD Ryzen 7 5700U Firmware
AMD Ryzen 3 5400U Firmware
AMD Ryzen 3 5400U
AMD Ryzen 5 5560U Firmware
AMD Ryzen 5 5560U Firmware
AMD Ryzen 5 5600U Firmware
AMD Ryzen 5 5600U
AMD Ryzen 5 5600H Firmware
AMD Ryzen 5 5600H
AMD Ryzen 5 5600HS Firmware
AMD Ryzen 5 5600HS
AMD Ryzen 7 5800U Firmware
AMD Ryzen 7 5800U Firmware
AMD Ryzen 7 5800H Firmware
AMD Ryzen 7 5800H Firmware
AMD Ryzen 7 5800HS Firmware
AMD Ryzen 7 5800HS Firmware
AMD Ryzen 9 5900HS Firmware
AMD Ryzen 9 5900HS Firmware
AMD Ryzen 9 5900HX Firmware
AMD Ryzen 9 5900HX
AMD Ryzen 9 5980HS Firmware
AMD Ryzen 9 5980HS Firmware
AMD Ryzen 9 5980HX
AMD Ryzen 9 5980HX Firmware

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is the severity of CVE-2021-26391?

    CVE-2021-26391 is rated as high severity due to its potential to allow code execution in a Trusted Application or the OS/kernel.

  • How do I fix CVE-2021-26391?

    To fix CVE-2021-26391, update affected AMD software to the latest versions as specified in the product security bulletin.

  • Which software versions are affected by CVE-2021-26391?

    CVE-2021-26391 impacts specific versions of AMD Enterprise Driver, Radeon Pro Software, and Radeon Software up to certain versions.

  • Is there a workaround for CVE-2021-26391?

    Currently, no specific workaround is recommended for CVE-2021-26391 other than applying the software updates.

  • Who is impacted by CVE-2021-26391?

    Users of affected AMD graphics and enterprise software products are impacted by CVE-2021-26391.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203