Description
In the Linux kernel, the following vulnerability has been resolved:

accel/amdxdna: Prevent ubuf size overflow

The ubuf size calculation may overflow, resulting in an undersized
allocation and possible memory corruption.

Use check_add_overflow() helpers to validate the size calculation before
allocation.
Published: 2026-03-25
Score: 7.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is found in the Linux kernel’s accel/amdxdna driver. An integer overflow occurs during the calculation of the ubuf size, leading to an undersized memory allocation that can corrupt kernel memory. The flaw is classified as CWE‑190.

Affected Systems

All Linux kernel versions that lack the check_add_overflow patch in the accel/amdxdna code are affected. This includes every release prior to the commit that applied the fix, spanning current stable kernels and the pre‑release 7.0‑rc1 listed in the CPE specification. Distribution packages that ship those kernels remain vulnerable until they are updated.

Risk and Exploitability

The CVSS base score of 7.8 marks it as high severity, yet the EPSS score of less than 1 % indicates exploitation is currently unlikely. The flaw requires the attacker to reach the system with local or elevated privileges to load or interact with the AMD DNA accelerator driver, and an attacker would need to trigger a controlled ubuf allocation to overwrite critical kernel memory. Because the vulnerability resides within internal driver calculations, remote exploitation without prior code execution is not apparent.

Generated by OpenCVE AI on May 22, 2026 at 02:24 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to a kernel version that includes the check_add_overflow patch for the accel/amdxdna driver.
  • Reboot the system so that the updated kernel and driver are active.
  • If an immediate upgrade cannot be performed, unload or disable the accel/amdxdna driver until the fix is deployed, or restrict driver access through security policies.

Generated by OpenCVE AI on May 22, 2026 at 02:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 22 May 2026 00:45:00 +0000

Type Values Removed Values Added
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*

Thu, 02 Apr 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Thu, 26 Mar 2026 12:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-119
CWE-680

Thu, 26 Mar 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-190
References

Wed, 25 Mar 2026 22:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-119
CWE-680

Wed, 25 Mar 2026 10:45:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Prevent ubuf size overflow The ubuf size calculation may overflow, resulting in an undersized allocation and possible memory corruption. Use check_add_overflow() helpers to validate the size calculation before allocation.
Title accel/amdxdna: Prevent ubuf size overflow
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-11T22:03:48.688Z

Reserved: 2026-01-13T15:37:45.992Z

Link: CVE-2026-23280

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-03-25T11:16:22.523

Modified: 2026-05-22T00:36:17.197

Link: CVE-2026-23280

cve-icon Redhat

Severity :

Publid Date: 2026-03-25T00:00:00Z

Links: CVE-2026-23280 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-22T02:30:16Z

Weaknesses