#VU124204 Out-of-bounds read in Linux kernel - CVE-2026-23243
Published: March 20, 2026
Vulnerability identifier: #VU124204
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2026-23243
CWE-ID: CWE-125
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Linux kernel
Linux kernel
Software vendor:
Linux Foundation
Linux Foundation
Description
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to a boundary error in the RDMA/umad component when processing user-controlled MAD headers. A local user can send a specially crafted request with mismatched MAD header size and RMPP header length to cause a denial of service.
Exploitation requires access to the RDMA UMAD interface. The vulnerability can trigger an out-of-bounds write in kernel memory, leading to system instability or crash.
Remediation
Install security update from vendor's repository.
External links
- https://git.kernel.org/stable/c/1371ef6b1ecf3676b8942f5dfb3634fb0648128e
- https://git.kernel.org/stable/c/205955f29c26330b1dc7fdeadd5bb97c38e26f56
- https://git.kernel.org/stable/c/362e45fd9069ffa1523f9f1633b606ebf72060d7
- https://git.kernel.org/stable/c/52ab82cc5cf8ada5c3fb6ffe8f32fdb2fc27a34b
- https://git.kernel.org/stable/c/5551b02fdbfd85a325bb857f3a8f9c9f33397ed2
- https://git.kernel.org/stable/c/6eb2919474ca105c5b13d19574e25f0ddcf19ca2
- https://git.kernel.org/stable/c/9c80d688f402539dfc8f336de1380d6b4ee14316
- https://git.kernel.org/stable/c/a6a3e4af10993cb9e4b8f0548680aba0ab5f3b0d