CVE-2026-46218

HIGH

drm/amdgpu: Add bounds checking to ib_{get,set}_value

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add bounds checking to ib_{get,set}_value The uvd/vce/vcn code accesses the IB at predefined offsets without checking that the IB is large enough. Check the bounds here. The caller is responsible for making sure it can handle arbitrary return values. Also make the idx a uint32_t to prevent overflows causing the condition to fail.

Scores

CVSS v3 7.1
EPSS 0.0013
EPSS Percentile 3.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Details

Status published
Products (30)
linux/Kernel 4.2.0 - 6.1.175linux
linux/Kernel 6.13.0 - 6.18.32linux
linux/Kernel 6.19.0 - 7.0.9linux
linux/Kernel 6.2.0 - 6.6.140linux
linux/Kernel 6.7.0 - 6.12.90linux
Linux/Linux < 4.2
Linux/Linux < 6.12.90
Linux/Linux < 6.18.32
Linux/Linux < 6.6.140
Linux/Linux < 7.0.9
... and 20 more
Published May 28, 2026
Tracked Since May 28, 2026