CVE-2026-23328

Summary

In the Linux kernel, the following vulnerability has been resolved:

accel/amdxdna: Fix NULL pointer dereference of mgmt_chann

mgmt_chann may be set to NULL if the firmware returns an unexpected error in aie2_send_mgmt_msg_wait(). This can later lead to a NULL pointer dereference in aie2_hw_stop().

Fix this by introducing a dedicated helper to destroy mgmt_chann and by adding proper NULL checks before accessing it.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxb87f920b934426a24d54613f12ed67c03ae05024 < 032ca7a9059c4ba6c329e0f1b442dab54dd9c3e5affected
LinuxLinuxb87f920b934426a24d54613f12ed67c03ae05024 < 6270ee26e1edd862ea17e3eba148ca8fb2c99dc9affected
LinuxLinux6.14affected
LinuxLinux0 < 6.14unaffected
LinuxLinux6.19.7 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References