CVE Catalog

CVE-2026-46204

HighCVSS 7.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.01%

2th percentile - higher than 2% of all known CVEs

Summary

A vulnerability in the Linux kernel has been resolved that allowed out-of-bounds (OOB) reads when parsing IB in the drm/amdgpu/vcn4 module. The IB parsing has been rewritten to use amdgpu_ib_get_value(), which handles bounds checks.

Risk Assessment

This vulnerability could lead to unauthorized memory access, posing a risk to system integrity. Organizations should be aware of potential threats associated with outdated kernels.

Recommendation

It is recommended to update the Linux kernel to the latest version to eliminate this vulnerability. Regular updates are crucial for maintaining system security.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Prevent OOB reads when parsing IB Rewrite the IB parsing to use amdgpu_ib_get_value() which handles the bounds checks.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS