PT-2026-27706 · Linux · Linux Kernel
Published
2026-01-01
·
Updated
2026-03-27
·
CVE-2026-23341
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
A flaw exists in the Linux kernel’s accel/amdxdna component where a crash can occur when destroying a suspended hardware context. This happens if a user space process issues an ioctl to destroy a hardware context that has already been automatically suspended, leading to a null pointer dereference because the mailbox channel pointer is NULL for the suspended context. The issue is addressed by checking the mailbox channel pointer in the
aie2 destroy context() function before accessing it.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Linux Kernel