{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-43235", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-05-01T14:12:55.995Z", "datePublished": "2026-05-06T11:28:30.872Z", "dateUpdated": "2026-05-11T22:20:37.087Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-11T22:20:37.087Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: iris: Add missing platform data entries for SM8750\n\nTwo platform-data fields for SM8750 were missed:\n\n - get_vpu_buffer_size = iris_vpu33_buf_size\n Without this, the driver fails to allocate the required internal\n buffers, leading to basic decode/encode failures during session\n bring-up.\n\n - max_core_mbps = ((7680 * 4320) / 256) * 60\n Without this capability exposed, capability checks are incomplete and\n v4l2-compliance for encoder fails."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/media/platform/qcom/iris/iris_platform_gen2.c"], "versions": [{"version": "a6882431a138ac352a6e20ec3b85f97f84501329", "lessThan": "1aa5833f29b88c16e9ad49a1782927754f3af742", "status": "affected", "versionType": "git"}, {"version": "a6882431a138ac352a6e20ec3b85f97f84501329", "lessThan": "c7b2105a1cad1737eb877cdb4865618927623dd4", "status": "affected", "versionType": "git"}, {"version": "a6882431a138ac352a6e20ec3b85f97f84501329", "lessThan": "bbef55f414100853d5bcea56a41f8b171bac8fcb", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/media/platform/qcom/iris/iris_platform_gen2.c"], "versions": [{"version": "6.18", "status": "affected"}, {"version": "0", "lessThan": "6.18", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.17", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19.6", "lessThanOrEqual": "6.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.0", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.18", "versionEndExcluding": "6.18.17"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.18", "versionEndExcluding": "6.19.6"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.18", "versionEndExcluding": "7.0"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/1aa5833f29b88c16e9ad49a1782927754f3af742"}, {"url": "https://git.kernel.org/stable/c/c7b2105a1cad1737eb877cdb4865618927623dd4"}, {"url": "https://git.kernel.org/stable/c/bbef55f414100853d5bcea56a41f8b171bac8fcb"}], "title": "media: iris: Add missing platform data entries for SM8750", "x_generator": {"engine": "bippy-1.2.0"}}}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "91D34097-62D4-400A-8894-1A45A5B44EEA", "versionEndExcluding": "6.18.17", "versionStartIncluding": "6.18", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "373EEEDA-FAA1-4FB4-B6ED-DB4DD99DBE67", "versionEndExcluding": "6.19.6", "versionStartIncluding": "6.19", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: iris: Add missing platform data entries for SM8750\n\nTwo platform-data fields for SM8750 were missed:\n\n - get_vpu_buffer_size = iris_vpu33_buf_size\n Without this, the driver fails to allocate the required internal\n buffers, leading to basic decode/encode failures during session\n bring-up.\n\n - max_core_mbps = ((7680 * 4320) / 256) * 60\n Without this capability exposed, capability checks are incomplete and\n v4l2-compliance for encoder fails."}], "id": "CVE-2026-43235", "lastModified": "2026-05-12T19:02:14.483", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-05-06T12:16:43.693", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/1aa5833f29b88c16e9ad49a1782927754f3af742"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/bbef55f414100853d5bcea56a41f8b171bac8fcb"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/c7b2105a1cad1737eb877cdb4865618927623dd4"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "kernel: media: iris: Add missing platform data entries for SM8750", "id": "2467209", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467209"}, "csaw": false, "cwe": "CWE-166", "details": ["A flaw was found in the `iris` media driver within the Linux kernel. Missing platform data entries for the SM8750 component prevent the driver from allocating necessary internal buffers. This can lead to failures in basic video decoding and encoding operations, effectively causing a Denial of Service (DoS) for media functionalities. Additionally, incomplete capability checks may result in issues with video encoder compliance."], "name": "CVE-2026-43235", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2026-05-06T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-43235\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-43235\nhttps://lore.kernel.org/linux-cve-announce/2026050657-CVE-2026-43235-e0a6@gregkh/T"]}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[a6882431a138ac352a6e20ec3b85f97f84501329,1aa5833f29b88c16e9ad49a1782927754f3af742)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[a6882431a138ac352a6e20ec3b85f97f84501329,c7b2105a1cad1737eb877cdb4865618927623dd4)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[a6882431a138ac352a6e20ec3b85f97f84501329,bbef55f414100853d5bcea56a41f8b171bac8fcb)"}}], "enrichment": {"confidence": 99.0, "confidence_source": "inferred", "scores": [{"score": 99.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Linux", "source": "cna", "vendor": "Linux"}, "product": "linux_kernel", "vendor": "linux"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "6.18"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[0,6.18)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[6.18.17,6.19.0)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[6.19.6,6.20.0)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[7.0,*]"}}], "enrichment": {"confidence": 99.0, "confidence_source": "inferred", "scores": [{"score": 99.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Linux", "source": "cna", "vendor": "Linux"}, "product": "linux_kernel", "vendor": "linux"}], "created": "2026-05-06T14:45:06.765849+00:00", "updated": "2026-05-12T21:45:05.384984+00:00", "vendors": ["linux", "linux$PRODUCT$linux_kernel"]}