CVE-2026-23288 — Vulnetix

Try Vulnetix Request Demo

CVE-2026-23288 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix out-of-bounds memset in command slot handling The remaining space in a command slot may be smaller than the size of the command header. Clearing the command header with memset() before verifying the available slot space can result in an out-of-bounds write and memory corruption. Fix this by moving the memset() call after the size validation.

EPSS 0.02% · 4.7th percentile

Risk Scores

EPSS Score

0.02%

4.7th percentile

Affected Products

Vendor	Product	Versions
Linux	Linux	13ae1a6000f7d8b09478e3128e87d45e89c7282f, 3d32eb7a5ecff92d83a5fd34c45c171c17d3d5d0, 7.0-rc1
linux	linux_kernel	6.19.4, 7.0-rc1, 6.19.4

Timeline

Mar 25, 2026 EPSS Score
Mar 25, 2026 Coalition ESS Score
Mar 25, 2026 CVE Published
Mar 29, 2026 Security Advisory
Apr 13, 2026 CVE Updated

References

Open in Interactive Console →