CVE-2026-43310

Published: May 8, 2026

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: media: verisilicon: Avoid G2 bus error while decoding H.264 and HEVC For the i.MX8MQ platform, there is a hardware limitation: the g1 VPU and g2 VPU cannot decode simultaneously; otherwise, it will cause below bus error and produce corrupted pictures, even potentially lead to system hang. [ 110.527986] hantro-vpu 38310000.video-codec: frame decode timed out. [ 110.583517] hantro-vpu 38310000.video-codec: bus error detected. Therefore, it is necessary to ensure that g1 and g2 operate alternately. This allows for successful multi-instance decoding of H.264 and HEVC. To achieve this, g1 and g2 share the same v4l2_m2m_dev, and then the v4l2_m2m_dev can handle the scheduling.

Vendor	Product	Versions
Linux	Linux	affected `cb5dd5a0fa518dff14ff2b90837c3c8f98f4dd5c - < 286d629d10640bc22f3bf46aa4f356eb7975e862` affected `cb5dd5a0fa518dff14ff2b90837c3c8f98f4dd5c - < e0203ddf9af7c8e170e1e99ce83b4dc07f0cd765`
Linux	Linux	affected `5.14` unaffected `0 - < 5.14` unaffected `6.19.6 - <= 6.19.` unaffected `7.0 - <= `

References

https://git.kernel.org/stable/c/286d629d10640bc22f3bf46aa4f356eb7975e862

https://git.kernel.org/stable/c/e0203ddf9af7c8e170e1e99ce83b4dc07f0cd765

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-43310

Description

Affected Products

References