CVE-2026-46332
HIGH EPSS 9.2%
Published Jun 9, 20262w ago · Modified Jun 17, 20261w ago
8.0 CVSS 3.1
Published Jun 9, 2026 2w ago
Last Modified Jun 17, 2026 1w ago
Description
In the Linux kernel, the following vulnerability has been resolved: greybus: gb-beagleplay: bound bootloader receive buffering cc1352_bootloader_rx() appends each serdev chunk into the fixed rx_buffer before parsing bootloader packets. The helper can keep leftover bytes between callbacks and may receive multiple packets in one callback, so a single count value is not constrained by one packet length. Check that the incoming chunk fits in the remaining receive buffer space before memcpy(). If it does not, drop the staged data and consume the bytes instead of overflowing rx_buffer.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Attack Vector Adjacent
Attack Complexity Low
Privileges Required None
User Interaction Required
Scope Unchanged
Confidentiality High
Integrity High
Availability High
Threat Intelligence
EPSS Exploit Probability
9.2% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
References 4
- git.kernel.org https://git.kernel.org/stable/c/0339a746ff7cd3f9d10f565e89c99dc93191e58d
- git.kernel.org https://git.kernel.org/stable/c/1214bf28965ceaf584fb20d357731264dd2e10e1
- git.kernel.org https://git.kernel.org/stable/c/663c2728a6d0f781044431111b53a27f71027e48
- git.kernel.org https://git.kernel.org/stable/c/fb91d4e49fcbea0b5091394ac5b8f7d4124265c3
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.