CVE-2026-45853

medium Red Hat
EPSS Score
0.0%
Exploitation probability in 30 days
Top 95% most likely to be exploited
Published: May 27, 2026 (44 days ago)
Last Modified: May 27, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's `drm/amdgpu` component. The `amdgpu_discovery_get_nps_info()` function incorrectly deallocates memory by using `kfree()` instead of `kvfree()`, even when memory was allocated with `kvcalloc()` which may use `vmalloc()`. This improper memory handling can lead to memory corruption. Such a vulnerability could potentially be exploited by a local attacker to cause system instability or escalate privileges.

CWE

CWE-763

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References