CVE-2026-46199 is a vulnerability in Linux Kernel
Published on May 28, 2026
drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg
Check bounds against the end of the BO whenever we access the msg.
Products Associated with CVE-2026-46199
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below c72a8b4dc6d598e3831ef3abd9c6527dfbf4810e is affected.
- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below 7688143ca62edeecacb3ba0a2cea129dbd262a18 is affected.
- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below 63b51e8a9d54317d31cc3856c1e12407070d5fc2 is affected.
- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below 3c817a60b09eaab926e475088e750936efcc95ae is affected.
- Version 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 and below 0a78f2bac1424deb7c9d5e09c6b8e849d8e8b648 is affected.
- Before 6.6.140 is affected.
- Before 6.12.90 is affected.
- Before 6.18.32 is affected.
- Before 7.0.9 is affected.
- Version 6.6.140, <= 6.6.* is unaffected.
- Version 6.12.90, <= 6.12.* is unaffected.
- Version 6.18.32, <= 6.18.* is unaffected.
- Version 7.0.9, <= 7.0.* is unaffected.
- Version 7.1-rc1, <= * is unaffected.