CVE-2026-46197
Published: May 28, 2026
Modified: Jun 1, 2026
CVSS v3.1
7.8
Description
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: validate SVM ioctl nattr against buffer size Validate nattr field against the buffer size, preventing out-of-bounds buffer access via user-controlled attribute count. (cherry picked from commit 5eca8bfdfa456c3304ca77523718fe24254c172f)
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 42de677f79999791bee4e21be318c32d90ab62c6 - < daa8bc5f83814b55b71d2b5b3a090d57a5219c21affected 42de677f79999791bee4e21be318c32d90ab62c6 - < fb07a0c9c8419164812e07274947f11b1d92dd61affected 42de677f79999791bee4e21be318c32d90ab62c6 - < 91c6dc5a41695d02dfc6299f106ac38a6c493e52affected 42de677f79999791bee4e21be318c32d90ab62c6 - < ccd060b5c7cc75ae7e211c250b97c5b6272e7efcaffected 42de677f79999791bee4e21be318c32d90ab62c6 - < db9530a9873a7c85d2266a922589ebcf427fa631+2 more versions |
Linux | Linux | affected 5.14unaffected 0 - < 5.14unaffected 5.15.209 - <= 5.15.*unaffected 6.1.175 - <= 6.1.*unaffected 6.6.140 - <= 6.6.*+4 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now