CVE-2026-23288

HIGH 7.8

accel/amdxdna: Fix out-of-bounds memset in command slot handling

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix out-of-bounds memset in command slot handling The remaining space in a command slot may be smaller than the size of the command header. Clearing the command header with memset() before verifying the available slot space can result in an out-of-bounds write and memory corruption. Fix this by moving the memset() call after the size validation.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Mar 25, 2026
Last Updated	Apr 13, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

Linux / Linux

13ae1a6000f7d8b09478e3128e87d45e89c7282f < cca770d710d5e03bc814af585cd6975eb6d74074 3d32eb7a5ecff92d83a5fd34c45c171c17d3d5d0 < 1110a949675ebd56b3f0286e664ea543f745801c

Linux / Linux

6.19.4 < 6.19.7

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/cca770d710d5e03bc814af585cd6975eb6d74074 git.kernel.org: https://git.kernel.org/stable/c/1110a949675ebd56b3f0286e664ea543f745801c