CVE-2026-46218
Bounds Checking Flaw in AMDGPU Linux Kernel Driver
Publication date: 2026-05-28
Last updated on: 2026-05-28
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the Linux kernel's drm/amdgpu component, specifically in the uvd/vce/vcn code. The issue is that the code accesses the IB (Indirect Buffer) at predefined offsets without verifying if the IB is large enough, which means it lacks proper bounds checking.
The vulnerability was addressed by adding bounds checking to the functions ib_get_value and ib_set_value to ensure that the IB is sufficiently large before accessing it. Additionally, the index variable was changed to a uint32_t type to prevent overflow conditions that could cause the bounds check to fail.
How can this vulnerability impact me? :
If exploited, this vulnerability could allow improper memory access due to lack of bounds checking when accessing the IB. This could potentially lead to unexpected behavior, crashes, or security issues such as information disclosure or privilege escalation depending on how the kernel handles the invalid accesses.