Vulnerability in Linux Kernel Affecting AMD GPU Functionality
CVE-2026-46218

7.1HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 28 May 2026

What is CVE-2026-46218?

A vulnerability in the Linux kernel's AMD GPU handling can lead to issues due to insufficient bounds checking when accessing instruction buffers (IB). The drm/amdgpu module is responsible for managing graphics processes, but it previously accessed memory offsets without verifying that the memory allocation was sufficient. This oversight may result in unexpected behavior or crashes, as the system could explore unallocated memory areas. The fix involves implementing rigorous bounds checking to ensure appropriate memory sizes are utilized before accessing these offsets. It is crucial for users and developers to update their systems to mitigate potential security risks associated with this vulnerability.

Affected Version(s)

Linux d38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 5da6c6430be0acb25b4242bce0323fc514d4e3cf

Linux d38ceaf99ed015f2a0b9af3499791bd3a3daae21 < 0fb5cb556b249b2b64c0f818136c4c3e838ef53f

Linux d38ceaf99ed015f2a0b9af3499791bd3a3daae21

References

https://git.kernel.org/stable/c/5da6c6430be0acb25b4242bce...

https://git.kernel.org/stable/c/0fb5cb556b249b2b64c0f8181...

https://git.kernel.org/stable/c/a853178d23e774adfe3a35073...

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 28, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46218 Data

JSON