HIGHCVE-2026-23280Published Modified CNA Linux
CVE-2026-23280: accel/amdxdna: Prevent ubuf size overflow
In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Prevent ubuf size overflow The ubuf size calculation may overflow, resulting in an undersized allocation and possible memory corruption. Use check_add_overflow() helpers to validate the size calculation before allocation.
Metrics
- CVSS v3.1
- 7.8
- Severity
- HIGH
- Fixed in
- 0
- Affected Products
- 2
Fix available
003808abb1d868aed7478a11a82e5bb4b3f1ca6d61500b31db94374a6669e73ce94d6f71cf8e85e066.18.176.19.77.0972bf4a23478fcb247b4f507d47a584bc8aea5bd
Affected packages
- Linux / Linux< 1500b31db94374a6669e73ce94d6f71cf8e85e06 (from bd72d4acda1069579b35123e3cc0b21ec1193a21) · < 972bf4a23478fcb247b4f507d47a584bc8aea5bd (from bd72d4acda1069579b35123e3cc0b21ec1193a21) · < 03808abb1d868aed7478a11a82e5bb4b3f1ca6d6 (from bd72d4acda1069579b35123e3cc0b21ec1193a21)
- Linux / Linux6.18Fixed in 0, 6.18.17, 6.19.7, 7.0
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H