Description
In the Linux kernel, the following vulnerability has been resolved:

accel/amdxdna: Fix memory leak in amdxdna_ubuf_map

The amdxdna_ubuf_map() function allocates memory for sg and
internal sg table structures, but it fails to free them if subsequent
operations (sg_alloc_table_from_pages or dma_map_sgtable) fail.
Published: 2026-05-27
Score: n/a
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The kernel function accel/amdxdna:amdxdna_ubuf_map allocates scatter‑gather structures but fails to free them when subsequent allocation or mapping calls fail, causing a memory leak that can grow until the system exhausts available memory and becomes unstable or refuses to service new requests. This is a classic example of a memory leak (CWE-401) compounded by unchecked error handling (CWE-672) and a resource management flaw (CWE-772).

Affected Systems

The vulnerability affects the Linux operating system kernel. No specific kernel versions are listed in the advisory, so any kernel that contains the amdxdna driver before the applied fix may be impacted.

Risk and Exploitability

The EPSS score is not available and the vulnerability is not listed in the CISA KEV catalog. The most likely attack vector would require local kernel access or elevated privileges that can trigger the amdxdna driver’s mapping functions. Because the flaw is only triggered when allocation or mapping operations fail, the conditions for exploitation are somewhat constrained, which reduces the overall threat level but still enables the possibility of a denial of service if an attacker can force repeated failures. The risk is therefore moderate but should be mitigated promptly.

Generated by OpenCVE AI on May 28, 2026 at 14:08 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Linux kernel to a version that incorporates the amdxdna_ubuf_map memory‑leak fix
  • Monitor the system’s memory usage frequently, looking for abnormal growth in RAM consumption or SWAP usage that might indicate an unresolved leak
  • If an immediate kernel upgrade is not possible, consider disabling or limiting the use of AMD XDNA acceleration features to reduce the likelihood of triggering the affected code path

Generated by OpenCVE AI on May 28, 2026 at 14:08 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 28 May 2026 12:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-772
References

Wed, 27 May 2026 17:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-401
CWE-672

Wed, 27 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix memory leak in amdxdna_ubuf_map The amdxdna_ubuf_map() function allocates memory for sg and internal sg table structures, but it fails to free them if subsequent operations (sg_alloc_table_from_pages or dma_map_sgtable) fail.
Title accel/amdxdna: Fix memory leak in amdxdna_ubuf_map
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-27T12:17:22.048Z

Reserved: 2026-05-13T15:03:33.084Z

Link: CVE-2026-45908

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:05.350

Modified: 2026-05-27T14:48:31.480

Link: CVE-2026-45908

cve-icon Redhat

Severity :

Publid Date: 2026-05-27T00:00:00Z

Links: CVE-2026-45908 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-28T14:15:19Z

Weaknesses
  • CWE-401

    Missing Release of Memory after Effective Lifetime

  • CWE-672

    Operation on a Resource after Expiration or Release

  • CWE-772

    Missing Release of Resource after Effective Lifetime