CVE-2026-43206

A flaw was found in the Linux kernel's drm/amdkfd component. An unprivileged local user can exploit an out-of-bounds write vulnerability in the kfd_event_page_set() function. This occurs because the function writes data without properly validating the buffer size, allowing a small buffer to trigger a write beyond its allocated memory. Successful exploitation of this flaw could lead to potential privilege escalation.