CVE-2026-23280

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2026-23280
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23280.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-23280
Downstream
Published
2026-03-25T10:26:41.088Z
Modified
2026-04-02T13:12:20.004948Z
Summary
accel/amdxdna: Prevent ubuf size overflow
Details

In the Linux kernel, the following vulnerability has been resolved:

accel/amdxdna: Prevent ubuf size overflow

The ubuf size calculation may overflow, resulting in an undersized allocation and possible memory corruption.

Use checkaddoverflow() helpers to validate the size calculation before allocation.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23280.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
bd72d4acda1069579b35123e3cc0b21ec1193a21
Fixed
1500b31db94374a6669e73ce94d6f71cf8e85e06
Fixed
972bf4a23478fcb247b4f507d47a584bc8aea5bd
Fixed
03808abb1d868aed7478a11a82e5bb4b3f1ca6d6

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23280.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.18.0
Fixed
6.18.17
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.7

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23280.json"