CVE-2026-43206

HIGH 7.8

drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set()

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() The kfd_event_page_set() function writes KFD_SIGNAL_EVENT_LIMIT * 8 bytes via memset without checking the buffer size parameter. This allows unprivileged userspace to trigger an out-of bounds kernel memory write by passing a small buffer, leading to potential privilege escalation.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	May 6, 2026
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new high vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

Linux / Linux

0fc8011f89feb8b2c3008583b777d097e1974660 < 3e04bc310d80b46eaf481f1fefcbcb37a187412d 0fc8011f89feb8b2c3008583b777d097e1974660 < de8d7a25cd2eb5875b1d8d4fbc7fe4b4138b781f 0fc8011f89feb8b2c3008583b777d097e1974660 < b4034442cb090e4a980bdcc1540948606cbc951b 0fc8011f89feb8b2c3008583b777d097e1974660 < 4857c37c7ba9aa38b9a4c694e8bd8d0091c87940 0fc8011f89feb8b2c3008583b777d097e1974660 < 75fb57efdd7863fffbc39db23e9cad7aafda26ed 0fc8011f89feb8b2c3008583b777d097e1974660 < bfcd6b53e1f4feb182952f4ff9a137c36ceaf20b 0fc8011f89feb8b2c3008583b777d097e1974660 < 4e72f419e4ed44cb3b60506752d8688c20a60a9b 0fc8011f89feb8b2c3008583b777d097e1974660 < 8a70a26c9f34baea6c3199a9862ddaff4554a96d

Linux / Linux

4.17

References

NVD ↗ CVE.org ↗ EPSS Data ↗