CVE-2026-23149

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel where userspace can trigger kernel warnings within the drm gem change handle ioctl() function. This occurs because GEM buffer object handles are represented as 32-bit integers in the user API, while the internal implementation uses integer ranges. Providing a handle value exceeding the maximum integer value triggers a kernel warning due to the WARN ON ONCE() macro. The issue is addressed by rejecting new handles above the maximum integer value and clarifying the end limit calculation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.