CVE-2026-46230

Published: May 28, 2026Modified: Jun 10, 2026

7.1

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Exploitability: 1.8 / Impact: 5.2

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (Secondary)

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg Check bounds against the end of the BO whenever we access the msg.

Affected (6)

Products: Linux: Linux Kernel

1 product

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 5.13 to 5.15.209
Linux Linux Kernel	From 5.16 to 6.1.175
Linux Linux Kernel	From 6.13 to 6.18.32
Linux Linux Kernel	From 6.19 to 7.0.9
Linux Linux Kernel	From 6.2 to 6.6.140
Linux Linux Kernel	From 6.7 to 6.12.90

Related CWEs

Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

References (7)

https://git.kernel.org/stable/c/638d3e0b9eb77aa53fdd60e2b928761d16ba76fa

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/638e48ee39d0f2af9336f917a6f5d6692dd64d93

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/82c535eff05490c71153af57de9fe85502fcb5d5

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/870c8738c3774336baedddd0240951d078a703b8

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/b193019860d61e92da395eae2011f2f6716b182f

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/e382e0b81a3e7bd21504fee1d01ae8b08f84d3a7

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/f55552adb100eb54a6e6dabff4fbdc8679bd3fa0

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

Timeline

No history available yet.