Description

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix out-of-bounds memset in command slot handling The remaining space in a command slot may be smaller than the size of the command header. Clearing the command header with memset() before verifying the available slot space can result in an out-of-bounds write and memory corruption. Fix this by moving the memset() call after the size validation.

INFO

Published Date :

2026-03-25T10:26:47.458Z

Last Modified :

2026-04-13T06:03:41.191Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-23288 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-23288.

URL Resource
https://git.kernel.org/stable/c/1110a949675ebd56b3f0286e664ea543f745801c cve-icon cve-icon
https://git.kernel.org/stable/c/cca770d710d5e03bc814af585cd6975eb6d74074 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026032524-CVE-2026-23288-1d11@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-23288 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-23288 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact