CVE-2026-43498

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue in the accel/ivpu component allows the re-exporting of imported GEM (Graphics Execution Manager) objects. This occurs because the system fails to verify if a buffer is imported during the export process. Re-exporting these buffers results in the loss of buffer flag settings, which can lead to incorrect device access and data corruption. The fix involves implementing a custom prime handle to fd() function that checks for imported objects and returns an error if re-exporting is attempted.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.