CVE Catalog

CVE-2026-46199

HighCVSS 7.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.01%

2th percentile - higher than 2% of all known CVEs

Summary

A vulnerability in the Linux kernel has been resolved that allowed out-of-bounds (OOB) reads when parsing decoder messages in the amdgpu vcn4 module. Boundary checks have been implemented to prevent such reads.

Risk Assessment

The vulnerability could lead to unauthorized memory access, posing a risk of data leakage or system instability. Organizations should be aware of the potential threats associated with an outdated kernel.

Recommendation

It is recommended to update the Linux kernel to the latest version to eliminate this vulnerability and secure the system against potential attacks.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg Check bounds against the end of the BO whenever we access the msg.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS