7.8
CVE-2026-23288
- EPSS 0.02%
- Veröffentlicht 25.03.2026 10:26:47
- Zuletzt bearbeitet 02.04.2026 15:16:30
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
accel/amdxdna: Fix out-of-bounds memset in command slot handling
In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix out-of-bounds memset in command slot handling The remaining space in a command slot may be smaller than the size of the command header. Clearing the command header with memset() before verifying the available slot space can result in an out-of-bounds write and memory corruption. Fix this by moving the memset() call after the size validation.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
≫
Produkt
Linux
Default Statusunaffected
Version
13ae1a6000f7d8b09478e3128e87d45e89c7282f
Version <
cca770d710d5e03bc814af585cd6975eb6d74074
Status
affected
Version
3d32eb7a5ecff92d83a5fd34c45c171c17d3d5d0
Version <
1110a949675ebd56b3f0286e664ea543f745801c
Status
affected
HerstellerLinux
≫
Produkt
Linux
Default Statusunaffected
Version
6.19.4
Version <
6.19.7
Status
affected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.054 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|