CVE-2026-46218
HIGHdrm/amdgpu: Add bounds checking to ib_{get,set}_value
Title source: cnaDescription
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add bounds checking to ib_{get,set}_value The uvd/vce/vcn code accesses the IB at predefined offsets without checking that the IB is large enough. Check the bounds here. The caller is responsible for making sure it can handle arbitrary return values. Also make the idx a uint32_t to prevent overflows causing the condition to fail.
References (6)
Core 6
Core References
Scores
CVSS v3
7.1
EPSS
0.0013
EPSS Percentile
3.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Details
Status
published
Products (30)
linux/Kernel
4.2.0 - 6.1.175linux
linux/Kernel
6.13.0 - 6.18.32linux
linux/Kernel
6.19.0 - 7.0.9linux
linux/Kernel
6.2.0 - 6.6.140linux
linux/Kernel
6.7.0 - 6.12.90linux
Linux/Linux
< 4.2
Linux/Linux
< 6.12.90
Linux/Linux
< 6.18.32
Linux/Linux
< 6.6.140
Linux/Linux
< 7.0.9
... and 20 more
Published
May 28, 2026
Tracked Since
May 28, 2026