Candice Li

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.6.50 **Description** The issue is related to the `ta if load debugfs write()` function in the `drivers/gpu/drm/amd/amdgpu/amdgpu psp ta.c` module of the Linux kernel's amdgpu driver. It involves a memory write beyond the allocated buffer, potentially allowing an attacker to impact the confidentiality, integrity, and availability of protected information. The vulnerability is resolved by adding TA binary size validation to avoid out-of-bounds writes. **Recommendations** To resolve the issue, update the Linux kernel to version 6.6.50 or later. As a temporary workaround, consider restricting access to the vulnerable `amdgpu` module to minimize the risk of exploitation.