Linux kernel AMDGPU VCN3 OOB read fix
CVE-2026-46230 Published on May 28, 2026
drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg
Check bounds against the end of the BO whenever we access the msg.
Products Associated with CVE-2026-46230
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 87cc7f9ebf7ce10f82250002d667ef3e93a79d44 and below f55552adb100eb54a6e6dabff4fbdc8679bd3fa0 is affected.
- Version 87cc7f9ebf7ce10f82250002d667ef3e93a79d44 and below 82c535eff05490c71153af57de9fe85502fcb5d5 is affected.
- Version 87cc7f9ebf7ce10f82250002d667ef3e93a79d44 and below 638d3e0b9eb77aa53fdd60e2b928761d16ba76fa is affected.
- Version 87cc7f9ebf7ce10f82250002d667ef3e93a79d44 and below 870c8738c3774336baedddd0240951d078a703b8 is affected.
- Version 87cc7f9ebf7ce10f82250002d667ef3e93a79d44 and below 638e48ee39d0f2af9336f917a6f5d6692dd64d93 is affected.
- Version 87cc7f9ebf7ce10f82250002d667ef3e93a79d44 and below e382e0b81a3e7bd21504fee1d01ae8b08f84d3a7 is affected.
- Version 87cc7f9ebf7ce10f82250002d667ef3e93a79d44 and below b193019860d61e92da395eae2011f2f6716b182f is affected.
- Version 5.13 is affected.
- Before 5.13 is unaffected.
- Version 5.15.209, <= 5.15.* is unaffected.
- Version 6.1.175, <= 6.1.* is unaffected.
- Version 6.6.140, <= 6.6.* is unaffected.
- Version 6.12.90, <= 6.12.* is unaffected.
- Version 6.18.32, <= 6.18.* is unaffected.
- Version 7.0.9, <= 7.0.* is unaffected.
- Version 7.1, <= * is unaffected.
Exploit Probability
EPSS
0.12%
Percentile
2.32%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.