Linux Kernel Xbox Remote Media Vulnerability Affecting DMA Operations
CVE-2026-46236

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 28 May 2026

What is CVE-2026-46236?

A vulnerability in the Linux kernel's handling of Direct Memory Access (DMA) operations can lead to potential security risks. Specifically, the IO buffer used in the Xbox remote media interface must not be incorporated within the device structure, as it contravenes DMA coherency rules. This mismanagement can lead to data corruption or unexpected behavior in device interactions. A patch has been implemented to address these concerns, ensuring better integrity and security of DMA operations.

Affected Version(s)

Linux 02d32bdad3123d7376244256936a6b3b6ee434e8 < 0cc9251833bf02c8c7863404157c94dab5928fcf

Linux 02d32bdad3123d7376244256936a6b3b6ee434e8 < 48a668c22e8f92637bc496e84d1cf06900f74a5c

Linux 02d32bdad3123d7376244256936a6b3b6ee434e8 < 63a960b39de9c51f29ca19aa5067934f865c0bc7

References

https://git.kernel.org/stable/c/0cc9251833bf02c8c78634041...

https://git.kernel.org/stable/c/48a668c22e8f92637bc496e84...

https://git.kernel.org/stable/c/63a960b39de9c51f29ca19aa5...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 28, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46236 Data

JSON