HIGH
accel/amdxdna Command Buffer OOB
CVE-2026-23424
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
KernelScan AI6.1MEDIUM
01Description
In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Validate command buffer payload count The count field in the command header is used to determine the valid payload size. Verify that the valid payload does not exceed the remaining buffer space.
02KernelScan AI Analysis
Risk summary
Local users with access to AMD XDNA accelerator devices can trigger an out-of-bounds read by submitting malformed command buffers with an invalid payload count. This can leak adjacent kernel memory contents and cause a kernel panic when the read reaches unmapped pages.
Vulnerability analysis
The vulnerability exists in the amdxdna_cmd_get_payload function where the count field from a user-controlled command header is used to calculate payload size without proper bounds checking against the actual GEM object buffer size (abo->mem.size). The original code only validated that count > num_masks but failed to ensure that the calculated payload offset and size does not exceed the allocated buffer. The fix adds this critical bounds check to prevent the driver from reading beyond the command buffer. The attack surface is local-only, requiring access to the AMD XDNA accelerator device node, which is typically gated by low-privilege group membership rather than root.
03Fix Versions
| Branch | Fixed in | Patch commit |
|---|---|---|
| 6.18 | 6.18.17 | 3464e7517551 |
| 6.19 | 6.19.7 | 3ed2ae6b3fe8 |
| mainline | 7.0 | 901ec3470994 |