CVE-2026-46199 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg Check bounds against the end of the BO whenever we access the msg.

PUBLISHED Reserved 2026-05-13 | Published 2026-05-28 | Updated 2026-06-01 | Assigner Linux

HIGH: 7.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Product status

Default status

unaffected

87cc7f9ebf7ce10f82250002d667ef3e93a79d44 (git) before 88411caee8f576d6b5abf6531232fcc0ce756dc5

affected

87cc7f9ebf7ce10f82250002d667ef3e93a79d44 (git) before c72a8b4dc6d598e3831ef3abd9c6527dfbf4810e

affected

87cc7f9ebf7ce10f82250002d667ef3e93a79d44 (git) before 7688143ca62edeecacb3ba0a2cea129dbd262a18

affected

87cc7f9ebf7ce10f82250002d667ef3e93a79d44 (git) before 63b51e8a9d54317d31cc3856c1e12407070d5fc2

affected

87cc7f9ebf7ce10f82250002d667ef3e93a79d44 (git) before 3c817a60b09eaab926e475088e750936efcc95ae

affected

87cc7f9ebf7ce10f82250002d667ef3e93a79d44 (git) before 0a78f2bac1424deb7c9d5e09c6b8e849d8e8b648

affected

Default status

affected

5.13

affected

Any version before 5.13

unaffected

6.1.175 (semver)

unaffected

6.6.140 (semver)

unaffected

6.12.90 (semver)

unaffected

6.18.32 (semver)

unaffected

7.0.9 (semver)

unaffected

7.1-rc1 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/88411caee8f576d6b5abf6531232fcc0ce756dc5

git.kernel.org/...c/c72a8b4dc6d598e3831ef3abd9c6527dfbf4810e

git.kernel.org/...c/7688143ca62edeecacb3ba0a2cea129dbd262a18

git.kernel.org/...c/63b51e8a9d54317d31cc3856c1e12407070d5fc2

git.kernel.org/...c/3c817a60b09eaab926e475088e750936efcc95ae

git.kernel.org/...c/0a78f2bac1424deb7c9d5e09c6b8e849d8e8b648

cve.org (CVE-2026-46199)

nvd.nist.gov (CVE-2026-46199)

Download JSON