CVE-2026-46332
mediumVulnerability Report
Generated by CyberWatcher
Description
A flaw was found in the Linux kernel's Greybus subsystem, specifically in the `gb-beagleplay` driver. The `cc1352_bootloader_rx()` function, responsible for receiving bootloader data, does not properly check the size of incoming data chunks before copying them into a fixed-size receive buffer. This unbounded buffering can lead to an `rx_buffer` overflow, potentially resulting in memory corruption and a denial of service.
CWE
CWE-120Affected Products
Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9