CVE-2026-23358

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix error handling in slot reset If the device has not recovered after slot reset is called, it goes to out label for error handling. There it could make decision based on uninitialized hive pointer and could result in accessing an uninitialized list. Initialize the list and hive properly so that it handles the error situation and also releases the reset domain lock which is acquired during error_detected callback. (cherry picked from commit bb71362182e59caa227e4192da5a612b09349696)

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/73e8bdf14248136459753252a438177df7ed8c7c	Patch
https://git.kernel.org/stable/c/b57c4ec98c17789136a4db948aec6daadceb5024	Patch
https://git.kernel.org/stable/c/baf4e7968911635eb816870af0ea587ac1457052	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.16:-::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc1::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc2::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc3::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc4::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc5::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc6::::::
	cpe:2.3:o:linux:linux_kernel:7.0:rc7::::::

History

24 Apr 2026, 19:03

Type	Values Removed	Values Added
CWE		CWE-908
Summary		(es) En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta: drm/amdgpu: Corregir el manejo de errores en el reinicio de ranura Si el dispositivo no se ha recuperado después de que se llama al reinicio de ranura, va a la etiqueta out para el manejo de errores. Allí podría tomar una decisión basada en un puntero hive no inicializado y podría resultar en el acceso a una lista no inicializada. Inicializar la lista y hive correctamente para que maneje la situación de error y también libere el bloqueo del dominio de reinicio que se adquiere durante la llamada de retorno error_detected. (seleccionado de la confirmación bb71362182e59caa227e4192da5a612b09349696)
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
First Time		Linux Linux linux Kernel
CPE		cpe:2.3:o:linux:linux_kernel:7.0:rc1:::::: cpe:2.3:o:linux:linux_kernel:7.0:rc6:::::: cpe:2.3:o:linux:linux_kernel:7.0:rc7:::::: cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:7.0:rc2:::::: cpe:2.3:o:linux:linux_kernel:6.16:-:::::: cpe:2.3:o:linux:linux_kernel:7.0:rc4:::::: cpe:2.3:o:linux:linux_kernel:7.0:rc3:::::: cpe:2.3:o:linux:linux_kernel:7.0:rc5::::::
References	~~() https://git.kernel.org/stable/c/73e8bdf14248136459753252a438177df7ed8c7c -~~	() https://git.kernel.org/stable/c/73e8bdf14248136459753252a438177df7ed8c7c - Patch
References	~~() https://git.kernel.org/stable/c/b57c4ec98c17789136a4db948aec6daadceb5024 -~~	() https://git.kernel.org/stable/c/b57c4ec98c17789136a4db948aec6daadceb5024 - Patch
References	~~() https://git.kernel.org/stable/c/baf4e7968911635eb816870af0ea587ac1457052 -~~	() https://git.kernel.org/stable/c/baf4e7968911635eb816870af0ea587ac1457052 - Patch

25 Mar 2026, 11:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-03-25 11:16

Updated : 2026-04-24 19:03

NVD link : CVE-2026-23358

Mitre link : CVE-2026-23358

CVE.ORG link : CVE-2026-23358

JSON object : View

Products Affected

linux

linux_kernel

CWE

CWE-908

Use of Uninitialized Resource

5.5 /10