Description
In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg

Check bounds against the end of the BO whenever we access the msg.
Published: 2026-05-28
Score: 7.1 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

During parsing of a decode message in the amdgpu vcn3 DRM driver, the kernel improperly checks buffer bounds, allowing access beyond the end of the buffer object. This out-of-bounds read exposes the contents of adjacent kernel memory, potentially leaking sensitive data or allowing an attacker to read arbitrary kernel addresses. The weakness is an instance of improper input validation and can lead to information disclosure or serve as a foothold for privilege escalation in kernel space.

Affected Systems

The vulnerability exists in the Linux kernel's DRM/amdgpu/vcn3 component. All nodes running a Linux kernel version that incorporates the unpatched amdgpu driver are affected. No specific upstream version is listed, so any kernel build prior to the commit that introduced the fix should be considered vulnerable.

Risk and Exploitability

Because the issue resides in a kernel driver, exploitation requires interaction with a GPU device through the DRM interface. This typically mandates local user privileges or the ability to inject commands to the amdgpu driver; the attack vector is therefore inferred to be local or within a privileged context. The EPSS score is less than 1%, indicating a very low exploitation probability, and the vulnerability is not listed in the KEV catalog. The CVSS score of 7.1 indicates a high risk, confirming that the vulnerability can lead to significant information disclosure affecting system security.

Generated by OpenCVE AI on May 30, 2026 at 14:36 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the Linux kernel to a version that contains the amdgpu vcn3 OOB read fix or apply the kernel patch from the maintainers.
  • If an immediate kernel upgrade is not feasible, disable the vcn3 functionality by unloading the amdgpu module or setting driver configuration options that prevent the use of the vcn3 device.
  • Restrict local user access to the DRM device through file permission changes or SELinux/AppArmor policies to reduce the attack surface.

Generated by OpenCVE AI on May 30, 2026 at 14:36 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 01 Jun 2026 17:00:00 +0000

Type Values Removed Values Added
References

Sat, 30 May 2026 13:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20
CWE-200

Sat, 30 May 2026 11:00:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 7.1, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H'}

Fri, 29 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-125
References

Thu, 28 May 2026 12:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20
CWE-200

Thu, 28 May 2026 10:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg Check bounds against the end of the BO whenever we access the msg.
Title drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-06-14T18:04:21.856Z

Reserved: 2026-05-13T15:03:33.106Z

Link: CVE-2026-46230

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-05-28T10:16:38.643

Modified: 2026-06-10T21:12:12.617

Link: CVE-2026-46230

cve-icon Redhat

Severity :

Publid Date: 2026-05-28T00:00:00Z

Links: CVE-2026-46230 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-30T14:45:25Z

Weaknesses