CVE-2026-43498 PUBLISHED

accel/ivpu: Disallow re-exporting imported GEM objects

Assigner: Linux
Reserved: 01.05.2026 Published: 21.05.2026 Updated: 21.05.2026

In the Linux kernel, the following vulnerability has been resolved:

accel/ivpu: Disallow re-exporting imported GEM objects

Prevent re-exporting of imported GEM buffers by adding a custom prime_handle_to_fd callback that checks if the object is imported and returns -EOPNOTSUPP if so.

Re-exporting imported GEM buffers causes loss of buffer flags settings, leading to incorrect device access and data corruption.

Product Status

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from 57557964b582238d5ee4b8538d1c4694f91c2186 to 3756043dd695bba34cc728cdc5688dcb49ac8043 (excl.) affected from 57557964b582238d5ee4b8538d1c4694f91c2186 to 7dd57d7a6350770dfc283287125c409e995200e0 (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected Version 6.19 is affected unaffected from 0 to 6.19 (excl.) unaffected from 7.0.7 to 7.0.* (incl.) unaffected from 7.1-rc3 to * (incl.)

CVE-2026-43498 PUBLISHED

accel/ivpu: Disallow re-exporting imported GEM objects

Product Status

References