CVE-2026-45853 in Linuxthông tin

Tóm tắt

Bởi MITRE • 27/05/2026

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: Use kvfree instead of kfree in amdgpu_gmc_get_nps_memranges()

amdgpu_discovery_get_nps_info() internally allocates memory for ranges using kvcalloc(), which may use vmalloc() for large allocation. Using kfree() to release vmalloc memory will lead to a memory corruption.

Use kvfree() to safely handle both kmalloc and vmalloc allocations.

Compile tested only. Issue found using a prototype static analysis tool and code review.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

chịu trách nhiệm

Linux

Đặt trước

13/05/2026

Tiết lộ

27/05/2026

Kiểm duyệt

được chấp nhận

mục

VDB-366072

CPE

sẵn sàng

CWE

CWE-119 (Đã xác nhận)

CVSS

8.0 (VulDB)

EPSS

0.00023

KEV

không

Các hoạt động

rất thấp

ngành

Chemical, Hospital, ...

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-45853
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-45853
CVE Details	https://www.cvedetails.com/cve/CVE-2026-45853/

◂ Trước Tổng Quan Tiếp theo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!