CVE-2026-23328 PUBLISHED

accel/amdxdna: Fix NULL pointer dereference of mgmt_chann

Assigner: Linux
Reserved: 13.01.2026 Published: 25.03.2026 Updated: 25.03.2026

In the Linux kernel, the following vulnerability has been resolved:

accel/amdxdna: Fix NULL pointer dereference of mgmt_chann

mgmt_chann may be set to NULL if the firmware returns an unexpected error in aie2_send_mgmt_msg_wait(). This can later lead to a NULL pointer dereference in aie2_hw_stop().

Fix this by introducing a dedicated helper to destroy mgmt_chann and by adding proper NULL checks before accessing it.

Product Status

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from b87f920b934426a24d54613f12ed67c03ae05024 to 032ca7a9059c4ba6c329e0f1b442dab54dd9c3e5 (excl.) affected from b87f920b934426a24d54613f12ed67c03ae05024 to 6270ee26e1edd862ea17e3eba148ca8fb2c99dc9 (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected Version 6.14 is affected unaffected from 0 to 6.14 (excl.) unaffected from 6.19.7 to 6.19.* (incl.) unaffected from 7.0-rc3 to * (incl.)

CVE-2026-23328 PUBLISHED

accel/amdxdna: Fix NULL pointer dereference of mgmt_chann

Product Status

References