VDB
CVE-2026-43206
CVE-2026-43206
PUBLISHED
CVSS 8.600000381469727 HIGH
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() The kfd_event_page_set() function writes KFD_SIGNAL_EVENT_LIMIT * 8 bytes via memset without checking the buffer size parameter. This allows unprivileged userspace to trigger an out-of bounds kernel memory write by passing a small buffer, leading to potential privilege escalation.
EPSS 0.01% · 2.5th percentile
Risk Scores
CVSS v4.0
8.600000381469727
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.01%
2.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux | *, 6.12.75, 6.19.6 |
| linux | linux_kernel | 0, 0, 0 |
Timeline
- May 6, 2026 CVE Published
- May 6, 2026 Security Advisory
- May 11, 2026 CVE Updated
- May 18, 2026 EPSS Score
- May 19, 2026 EPSS Score
- May 20, 2026 EPSS Score
- May 21, 2026 EPSS Score
- May 22, 2026 EPSS Score
- May 23, 2026 EPSS Score
- May 24, 2026 EPSS Score
- May 25, 2026 EPSS Score
- May 26, 2026 EPSS Score
References
- https://git.kernel.org/stable/c/3e04bc310d80b46eaf481f1fefcbcb37a187412d url
- https://git.kernel.org/stable/c/de8d7a25cd2eb5875b1d8d4fbc7fe4b4138b781f url
- https://git.kernel.org/stable/c/b4034442cb090e4a980bdcc1540948606cbc951b url
- https://git.kernel.org/stable/c/4857c37c7ba9aa38b9a4c694e8bd8d0091c87940 url
- https://git.kernel.org/stable/c/75fb57efdd7863fffbc39db23e9cad7aafda26ed url
- https://git.kernel.org/stable/c/bfcd6b53e1f4feb182952f4ff9a137c36ceaf20b url
- https://git.kernel.org/stable/c/4e72f419e4ed44cb3b60506752d8688c20a60a9b url
- https://git.kernel.org/stable/c/8a70a26c9f34baea6c3199a9862ddaff4554a96d url
- https://nvd.nist.gov/vuln/detail/CVE-2026-43206 advisory
- https://lists.debian.org/debian-lts-announce/2026/05/msg00051.html advisory
- https://lists.debian.org/debian-lts-announce/2026/05/msg00052.html advisory