CVE-2026-45853

Published: May 27, 2026

Modified: May 27, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Use kvfree instead of kfree in amdgpu_gmc_get_nps_memranges() amdgpu_discovery_get_nps_info() internally allocates memory for ranges using kvcalloc(), which may use vmalloc() for large allocation. Using kfree() to release vmalloc memory will lead to a memory corruption. Use kvfree() to safely handle both kmalloc and vmalloc allocations. Compile tested only. Issue found using a prototype static analysis tool and code review.

Vendor	Product	Versions
Linux	Linux	affected `b194d21b9bcc15b50df1bc3ff7428e51c2918a6f - < 16e7e7ad8cdc6b4c4af7f31e262f1494c1b2a55e` affected `b194d21b9bcc15b50df1bc3ff7428e51c2918a6f - < 9ae85b0c1909b6c6bfd2636b04cdaf7f520bf2b5` affected `b194d21b9bcc15b50df1bc3ff7428e51c2918a6f - < f441538893eba6347b983f2904819ca6c99da65e` affected `b194d21b9bcc15b50df1bc3ff7428e51c2918a6f - < 0c44d61945c4a80775292d96460aa2f22e62f86c`
Linux	Linux	affected `6.11` unaffected `0 - < 6.11` unaffected `6.12.75 - <= 6.12.` unaffected `6.18.14 - <= 6.18.` unaffected `6.19.4 - <= 6.19.*` +1 more versions

References

https://git.kernel.org/stable/c/16e7e7ad8cdc6b4c4af7f31e262f1494c1b2a55e

https://git.kernel.org/stable/c/9ae85b0c1909b6c6bfd2636b04cdaf7f520bf2b5

https://git.kernel.org/stable/c/f441538893eba6347b983f2904819ca6c99da65e

https://git.kernel.org/stable/c/0c44d61945c4a80775292d96460aa2f22e62f86c

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-45853

Description

Affected Products

References