CVE-2026-46332

medium Red Hat
Published: June 9, 2026 (30 days ago)
Last Modified: June 9, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's Greybus subsystem, specifically in the `gb-beagleplay` driver. The `cc1352_bootloader_rx()` function, responsible for receiving bootloader data, does not properly check the size of incoming data chunks before copying them into a fixed-size receive buffer. This unbounded buffering can lead to an `rx_buffer` overflow, potentially resulting in memory corruption and a denial of service.

CWE

CWE-120

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References