CVE-2026-45979
Analyzed Analyzed - Analysis Complete
Memory Allocation Failure in AMDGPU Kernel Driver

Publication date: 2026-05-27

Last updated on: 2026-06-16

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: clean up the amdgpu_cs_parser_bos In low memory conditions, kmalloc can fail. In such conditions unlock the mutex for a clean exit. We do not need to amdgpu_bo_list_put as it's been handled in the amdgpu_cs_parser_fini.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-27
Last Modified
2026-06-16
Generated
2026-06-16
AI Q&A
2026-05-27
EPSS Evaluated
2026-06-15
NVD
CVE-2026-45979
EUVD
EUVD-2026-32263
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel From 6.19 (inc) to 6.19.4 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the Linux kernel's amdgpu driver, specifically in the drm/amdgpu component. It involves the handling of memory allocation failures (kmalloc failures) under low memory conditions. When kmalloc fails, the code did not properly unlock a mutex, which could lead to issues such as deadlocks or improper resource cleanup. The fix ensures that the mutex is unlocked to allow a clean exit, and it clarifies that a particular resource cleanup function (amdgpu_bo_list_put) is unnecessary because it is already handled elsewhere.

Impact Analysis

If this vulnerability is present, under low memory conditions, the failure to unlock a mutex could cause the system or the amdgpu driver to hang or deadlock, potentially leading to degraded system stability or crashes. This could affect the reliability of graphics processing on affected Linux systems, especially when memory resources are constrained.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-45979. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart