CVE-2026-43400

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: add upper bound check on user inputs in signal ioctl

Huge input values in amdgpu_userq_signal_ioctl can lead to a OOM and could be exploited.

So check these input value against AMDGPU_USERQ_MAX_HANDLES which is big enough value for genuine use cases and could potentially avoid OOM.

(cherry picked from commit be267e15f99bc97cbe202cd556717797cdcf79a5)

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa292fdecd72834b3bec380baa5db1e69e7f70679 < 6fff5204d8aa26b1be50b6427f833bd3e8899c4faffected
LinuxLinuxa292fdecd72834b3bec380baa5db1e69e7f70679 < 46630d966b99b0fc6cb01fef4110587f3375a0c0affected
LinuxLinuxa292fdecd72834b3bec380baa5db1e69e7f70679 < ea78f8c68f4f6211c557df49174c54d167821962affected
LinuxLinux6.16affected
LinuxLinux0 < 6.16unaffected
LinuxLinux6.18.19 <= 6.18.*unaffected
LinuxLinux6.19.9 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References