CVE-2026-46204
HighCVSS 7.1Exploitation Probability (EPSS)
Low risk2th percentile - higher than 2% of all known CVEs
Summary
A vulnerability in the Linux kernel has been resolved that allowed out-of-bounds (OOB) reads when parsing IB in the drm/amdgpu/vcn4 module. The IB parsing has been rewritten to use amdgpu_ib_get_value(), which handles bounds checks.
Risk Assessment
This vulnerability could lead to unauthorized memory access, posing a risk to system integrity. Organizations should be aware of potential threats associated with outdated kernels.
Recommendation
It is recommended to update the Linux kernel to the latest version to eliminate this vulnerability. Regular updates are crucial for maintaining system security.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Prevent OOB reads when parsing IB Rewrite the IB parsing to use amdgpu_ib_get_value() which handles the bounds checks.

