Description
In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg

Check bounds against the end of the BO whenever we access the msg.
Published: 2026-05-28
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A security flaw in the Linux kernel’s AMD GPU driver allows an out‑of‑bounds read during the parsing of a decoding message. The driver checks bounds against the end of the buffer object (BO) but fails to correctly prevent reads beyond the BO boundaries. This defect lets a malicious actor read adjacent kernel memory, potentially exposing confidential data or causing a kernel crash.

Affected Systems

The issue targets the amdgpu driver in the Linux kernel, specifically the VCN4 decoding path. The affected product is the AMD GPU driver module incorporated in the kernel. Affected kernels are any releases that include the amdgpu module before the patch that added proper bounds checking. No explicit version ranges are listed in the advisory, so all kernels prior to the latest update that contains the fix should be considered vulnerable.

Risk and Exploitability

The out‑of‑bounds read presents an information‑disclosure risk. The CVSS score of 7.1 denotes a high severity. EPSS is reported as <1%, indicating a very low current exploitation probability, and the flaw is not listed in CISA KEV. The likely attack vector is a local or privileged attacker who can supply a crafted decoding message to the VCN4 decoder; this is inferred from the driver’s interaction with user‑supplied data. Successful exploitation would require interaction with the graphics subsystem, but does not need network access or elevated privileges beyond those needed to trigger the decoding path.

Generated by OpenCVE AI on May 30, 2026 at 13:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Linux kernel to a release that includes the amdgpu out‑of‑bounds read fix.
  • If the AMD GPU is not required, disable or restrict the amdgpu driver or limit its load to trusted users.
  • Enable kernel hardening mechanisms such as KASLR, CONFIG_STRICT_DEVMEM, and SELinux to reduce the impact of any remaining buffer errors.

Generated by OpenCVE AI on May 30, 2026 at 13:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 01 Jun 2026 17:00:00 +0000

Type Values Removed Values Added
References

Sat, 30 May 2026 11:00:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 7.1, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H'}

Fri, 29 May 2026 04:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-119

Fri, 29 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-125
References

Thu, 28 May 2026 13:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-119

Thu, 28 May 2026 10:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg Check bounds against the end of the BO whenever we access the msg.
Title drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-06-14T18:02:09.201Z

Reserved: 2026-05-13T15:03:33.104Z

Link: CVE-2026-46199

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-05-28T10:16:35.570

Modified: 2026-06-10T17:11:00.417

Link: CVE-2026-46199

cve-icon Redhat

Severity :

Publid Date: 2026-05-28T00:00:00Z

Links: CVE-2026-46199 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-30T13:30:24Z

Weaknesses