CVE-2026-23474

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19.0

Description The Linux kernel contains a flaw in the RedBoot partition table parser. When CONFIG FORTIFY SOURCE is enabled and a recent compiler is used, a buffer overflow can occur during the parsing process, potentially leading to a system crash. The issue arises because the code uses memcmp() with a potentially oversized buffer, as the size calculation relies on strlen(). The memcmp() function attempts to read beyond the allocated memory, triggering the warning and subsequent oops.

Recommendations Update to Linux kernel version 6.19.0 or later.