CVE-2026-23008

🗓️ 25 Jan 2026 15:15:00Reported by ubuntu.comType

ubuntucve

ubuntucve🔗 ubuntu.com👁 4 Views

CVE-2026-23008: Fix KMS with 3D on hardware version ten in vmware graphics to prevent null dereference and crash.

Reporter	Title	Published	Views	Family All 17
ATTACKERKB	CVE-2026-23008	25 Jan 202614:36	–	attackerkb
AstraLinux	Astra Linux – Vulnerability in Linux 5.10	19 Jun 202611:10	–	astralinux
Circl	CVE-2026-23008	25 Jan 202616:03	–	circl
CNNVD	Linux Kernel Security Vulnerabilities	25 Jan 202600:00	–	cnnvd
CVE	CVE-2026-23008	25 Jan 202614:36	–	cve
Cvelist	CVE-2026-23008 drm/vmwgfx: Fix KMS with 3D on HW version 10	25 Jan 202614:36	–	cvelist
Debian CVE	CVE-2026-23008	25 Jan 202614:36	–	debiancve
EUVD	EUVD-2026-4625	25 Jan 202614:36	–	euvd
NVD	CVE-2026-23008	25 Jan 202615:15	–	nvd
OSV	BELL-CVE-2026-23008	27 Jan 202606:07	–	osv

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	25.10	any	linux	0	linux_0_any.deb
Ubuntu	25.10	any	linux-aws	0	linux-aws_0_any.deb
Ubuntu	25.10	any	linux-azure	0	linux-azure_0_any.deb
Ubuntu	25.10	any	linux-azure-fde	0	linux-azure-fde_0_any.deb
Ubuntu	25.10	any	linux-gcp	0	linux-gcp_0_any.deb
Ubuntu	25.10	any	linux-oracle	0	linux-oracle_0_any.deb
Ubuntu	24.04	any	linux-oem-6.17	0	linux-oem-6.17_0_any.deb
Ubuntu	25.10	any	linux-raspi	0	linux-raspi_0_any.deb
Ubuntu	25.10	any	linux-realtime	0	linux-realtime_0_any.deb
Ubuntu	25.10	any	linux-riscv	0	linux-riscv_0_any.deb

Source	Link
cve	www.cve.org/CVERecord
git	www.git.kernel.org/linus/d9186faeae6efb7d0841a5e8eb213ff4c7966614%20(6.19-rc6)
git	www.git.kernel.org/stable/c/a91bdd21d5efb3072beefbec13762b7722200c49
git	www.git.kernel.org/stable/c/d9186faeae6efb7d0841a5e8eb213ff4c7966614

23 May 2026 09:34Current

5.9Medium risk

Vulners AI Score5.9

CVSS 3.15.5

EPSS0.00135

vmware graphics hardware version ten gigabyte surfaces backing buffer null dereference black screen