CVE-2026-43400

MEDIUM

drm/amdgpu: add upper bound check on user inputs in signal ioctl

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add upper bound check on user inputs in signal ioctl Huge input values in amdgpu_userq_signal_ioctl can lead to a OOM and could be exploited. So check these input value against AMDGPU_USERQ_MAX_HANDLES which is big enough value for genuine use cases and could potentially avoid OOM. (cherry picked from commit be267e15f99bc97cbe202cd556717797cdcf79a5)

References (3)

Core 3

Core References

https://git.kernel.org/stable/c/6fff5204d8aa26b1be50b6427f833bd3e8899c4f

https://git.kernel.org/stable/c/46630d966b99b0fc6cb01fef4110587f3375a0c0

https://git.kernel.org/stable/c/ea78f8c68f4f6211c557df49174c54d167821962

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published

Products (13)

Linux/Linux < 6.16

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 46630d966b99b0fc6cb01fef4110587f3375a0c0

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 6fff5204d8aa26b1be50b6427f833bd3e8899c4f

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - ea78f8c68f4f6211c557df49174c54d167821962

Linux/Linux 6.16

Linux/Linux 6.18.19 - 6.18.*

Linux/Linux 6.19.9 - 6.19.*

Linux/Linux 7.0

Linux/Linux a292fdecd72834b3bec380baa5db1e69e7f70679 - 46630d966b99b0fc6cb01fef4110587f3375a0c0

Linux/Linux a292fdecd72834b3bec380baa5db1e69e7f70679 - 6fff5204d8aa26b1be50b6427f833bd3e8899c4f

... and 3 more

Published May 08, 2026

Tracked Since May 08, 2026