CVE-2026-43400

May 8, 2026, 3:16 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add upper bound check on user inputs in signal ioctl Huge input values in amdgpu_userq_signal_ioctl can lead to a OOM and could be exploited. So check these input value against AMDGPU_USERQ_MAX_HANDLES which is big enough value for genuine use cases and could potentially avoid OOM. (cherry picked from commit be267e15f99bc97cbe202cd556717797cdcf79a5)

Product(s) Impacted

Vendor Product Versions
Linux
  • Linux Kernel
  • *
Amdgpu
  • Amdgpu
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o linux linux_kernel / / / / / / / /
a amdgpu amdgpu / / / / / / / /

References

https://git.kernel.org/stable/c/46630d966b99b0fc6cb01fef4110587f3375a0c0
https://git.kernel.org/stable/c/6fff5204d8aa26b1be50b6427f833bd3e8899c4f
https://git.kernel.org/stable/c/ea78f8c68f4f6211c557df49174c54d167821962

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2026-05-08
CVE-2026-43400

Timeline

Published: May 8, 2026, 3:16 p.m.
Last Modified: May 8, 2026, 3:16 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.