CVE-2026-46217 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Avoid overflow on msg bound check As pointed out by SDL, the previous condition may be vulnerable to overflow. (cherry picked from commit 3c5367d950140d4ec7af830b2268a5a6fdaa3885)

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/271cd5429513ff9b364a9bf8903e5b65b687eb25
https://git.kernel.org/stable/c/30d12ee310a6024ff4c7b9eafdbbeab2db450d4a
https://git.kernel.org/stable/c/5bb5faff4837b1d98fd655cf8bd7b5d4da0fc4dc
https://git.kernel.org/stable/c/65bce27ea6192320448c30267ffc17ffa094e713
https://git.kernel.org/stable/c/73043d296787bf187d89ffb5c5dcf5bdc3db7885

History

Thu, 28 May 2026 10:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: Avoid overflow on msg bound check As pointed out by SDL, the previous condition may be vulnerable to overflow. (cherry picked from commit 3c5367d950140d4ec7af830b2268a5a6fdaa3885)
Title		drm/amdgpu/vcn4: Avoid overflow on msg bound check
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/271cd5429513ff9b364a9bf8903e5b65b687eb25 https://git.kernel.org/stable/c/30d12ee310a6024ff4c7b9eafdbbeab2db450d4a https://git.kernel.org/stable/c/5bb5faff4837b1d98fd655cf8bd7b5d4da0fc4dc https://git.kernel.org/stable/c/65bce27ea6192320448c30267ffc17ffa094e713 https://git.kernel.org/stable/c/73043d296787bf187d89ffb5c5dcf5bdc3db7885

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-28T09:40:33.705Z

Updated: 2026-05-28T09:40:33.705Z

Reserved: 2026-05-13T15:03:33.105Z

Link: CVE-2026-46217

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-05-28T10:16:37.330

Modified: 2026-05-28T10:16:37.330

Link: CVE-2026-46217

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-46217", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-05-13T15:03:33.105Z", "datePublished": "2026-05-28T09:40:33.705Z", "dateUpdated": "2026-05-28T09:40:33.705Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-28T09:40:33.705Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu/vcn4: Avoid overflow on msg bound check\n\nAs pointed out by SDL, the previous condition may be vulnerable to\noverflow.\n\n(cherry picked from commit 3c5367d950140d4ec7af830b2268a5a6fdaa3885)"}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/gpu/drm/amd/amdgpu/vcn_v4_0.c"], "versions": [{"version": "c72a8b4dc6d598e3831ef3abd9c6527dfbf4810e", "lessThan": "5bb5faff4837b1d98fd655cf8bd7b5d4da0fc4dc", "status": "affected", "versionType": "git"}, {"version": "7688143ca62edeecacb3ba0a2cea129dbd262a18", "lessThan": "73043d296787bf187d89ffb5c5dcf5bdc3db7885", "status": "affected", "versionType": "git"}, {"version": "63b51e8a9d54317d31cc3856c1e12407070d5fc2", "lessThan": "271cd5429513ff9b364a9bf8903e5b65b687eb25", "status": "affected", "versionType": "git"}, {"version": "3c817a60b09eaab926e475088e750936efcc95ae", "lessThan": "30d12ee310a6024ff4c7b9eafdbbeab2db450d4a", "status": "affected", "versionType": "git"}, {"version": "0a78f2bac1424deb7c9d5e09c6b8e849d8e8b648", "lessThan": "65bce27ea6192320448c30267ffc17ffa094e713", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/gpu/drm/amd/amdgpu/vcn_v4_0.c"], "versions": [{"version": "7.1-rc1", "status": "affected"}, {"version": "0", "lessThan": "7.1-rc1", "status": "unaffected", "versionType": "semver"}, {"version": "7.1-rc2", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "7.1-rc1", "versionEndExcluding": "7.1-rc2"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/5bb5faff4837b1d98fd655cf8bd7b5d4da0fc4dc"}, {"url": "https://git.kernel.org/stable/c/73043d296787bf187d89ffb5c5dcf5bdc3db7885"}, {"url": "https://git.kernel.org/stable/c/271cd5429513ff9b364a9bf8903e5b65b687eb25"}, {"url": "https://git.kernel.org/stable/c/30d12ee310a6024ff4c7b9eafdbbeab2db450d4a"}, {"url": "https://git.kernel.org/stable/c/65bce27ea6192320448c30267ffc17ffa094e713"}], "title": "drm/amdgpu/vcn4: Avoid overflow on msg bound check", "x_generator": {"engine": "bippy-1.2.0"}}}}