Linux Kernel: Prevent Re-exporting Imported GEM Buffers Causing Data Corruption
CVE-2026-43498 Published on May 21, 2026
accel/ivpu: Disallow re-exporting imported GEM objects
In the Linux kernel, the following vulnerability has been resolved:
accel/ivpu: Disallow re-exporting imported GEM objects
Prevent re-exporting of imported GEM buffers by adding a custom
prime_handle_to_fd callback that checks if the object is imported
and returns -EOPNOTSUPP if so.
Re-exporting imported GEM buffers causes loss of buffer flags settings,
leading to incorrect device access and data corruption.
Products Associated with CVE-2026-43498
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 57557964b582238d5ee4b8538d1c4694f91c2186 and below 3756043dd695bba34cc728cdc5688dcb49ac8043 is affected.
- Version 57557964b582238d5ee4b8538d1c4694f91c2186 and below 7dd57d7a6350770dfc283287125c409e995200e0 is affected.
- Version 6.19 is affected.
- Before 6.19 is unaffected.
- Version 7.0.7, <= 7.0.* is unaffected.
- Version 7.1-rc3, <= * is unaffected.