VYPR
High severity7.8NVD Advisory· Published Mar 25, 2026· Updated May 29, 2026

CVE-2026-23288

CVE-2026-23288

Description

In the Linux kernel, the following vulnerability has been resolved:

accel/amdxdna: Fix out-of-bounds memset in command slot handling

The remaining space in a command slot may be smaller than the size of the command header. Clearing the command header with memset() before verifying the available slot space can result in an out-of-bounds write and memory corruption.

Fix this by moving the memset() call after the size validation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.