CVE-2026-46311

HIGH

drm/amdgpu/userq: fix access to stale wptr mapping

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/userq: fix access to stale wptr mapping Use drm_exec to take both locks i.e vm root bo and wptr_obj bo to access the mapping data properly. This fixes the security issue of unmap the wptr_obj while a queue creation is in progress and passing other bo at same address. (cherry picked from commit 1fc6c8ab45dbee096469c08c13f6099d57a52d6c)

Scores

CVSS v3 7.8
EPSS 0.0011
EPSS Percentile 1.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (13)
linux/Kernel 6.16.0 - 7.0.9linux
Linux/Linux < 6.16
Linux/Linux < 7.0.9
Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 336a9186f3a4b65bbd865d93936605ac8a1a3991
Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 6da7b1242da4455b11c24ce667d1cab1a348c8ea
Linux/Linux 5fb2f7fc21a3668e5794cc0d153641b9719713e1 - 336a9186f3a4b65bbd865d93936605ac8a1a3991
Linux/Linux 5fb2f7fc21a3668e5794cc0d153641b9719713e1 - 6da7b1242da4455b11c24ce667d1cab1a348c8ea
Linux/Linux 6.16
Linux/Linux 7.0.9 - 7.0.*
Linux/Linux 7.1
... and 3 more
Published Jun 08, 2026
Tracked Since Jun 08, 2026