CVE-2026-43222
Published: May 6, 2026
Modified: May 11, 2026
CVSS v3.1
7.8
Description
In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: AV1: Fix tile info buffer size Each tile info is composed of: row_sb, col_sb, start_pos and end_pos (4 bytes each). So the total required memory is AV1_MAX_TILES * 16 bytes. Use the correct #define to allocate the buffer and avoid writing tile info in non-allocated memory.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 727a400686a2c0d25015c9e44916a59b72882f83 - < a5b1ddbe31f49b4da78642157589970e9b60a231affected 727a400686a2c0d25015c9e44916a59b72882f83 - < 34f36f9c6114af781a5a4f7a7c99334c85b73fc7affected 727a400686a2c0d25015c9e44916a59b72882f83 - < f122f2b3ce9dbde60bf7ab0b180fe4a01f9d9bc4affected 727a400686a2c0d25015c9e44916a59b72882f83 - < 74abfadd7ef5ac9f3a6111d550cc651d1457c641affected 727a400686a2c0d25015c9e44916a59b72882f83 - < a505ca2db89ad92a8d8d27fa68ebafb12e04a679 |
Linux | Linux | affected 6.5unaffected 0 - < 6.5unaffected 6.6.128 - <= 6.6.*unaffected 6.12.75 - <= 6.12.*unaffected 6.18.16 - <= 6.18.*+2 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now