CVE-2026-46218
Published: May 28, 2026
Modified: Jun 1, 2026
CVSS v3.1
7.1
Description
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add bounds checking to ib_{get,set}_value The uvd/vce/vcn code accesses the IB at predefined offsets without checking that the IB is large enough. Check the bounds here. The caller is responsible for making sure it can handle arbitrary return values. Also make the idx a uint32_t to prevent overflows causing the condition to fail.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected d38ceaf99ed015f2a0b9af3499791bd3a3daae21 - < 5da6c6430be0acb25b4242bce0323fc514d4e3cfaffected d38ceaf99ed015f2a0b9af3499791bd3a3daae21 - < 0fb5cb556b249b2b64c0f818136c4c3e838ef53faffected d38ceaf99ed015f2a0b9af3499791bd3a3daae21 - < a853178d23e774adfe3a35073c375b04b3b20f7daffected d38ceaf99ed015f2a0b9af3499791bd3a3daae21 - < fec8b11b55e53ff51a741e56894fe331a516f5c6affected d38ceaf99ed015f2a0b9af3499791bd3a3daae21 - < ee26fcf7c5cf131f0b6a732faa27d79ec61b8ec7+1 more versions |
Linux | Linux | affected 4.2unaffected 0 - < 4.2unaffected 6.1.175 - <= 6.1.*unaffected 6.6.140 - <= 6.6.*unaffected 6.12.90 - <= 6.12.*+3 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now