CVE-2026-46199 Linux CVE debrief

Who should care

Linux system administrators running kernels with AMD GPU support, particularly those enabling video decode functionality for untrusted content; security teams tracking kernel driver vulnerabilities; organizations with VDI or media processing workloads on AMD GPU hardware

Technical summary

The AMDGPU kernel driver's VCN4 (Video Core Next 4) video decode component contained a missing bounds validation vulnerability. When parsing decoder messages, the driver accessed message data without first verifying that offsets remained within the allocated buffer object (BO) boundaries. This could result in out-of-bounds reads from kernel memory. The resolution adds explicit bounds checks against the BO end for all message access operations. The fix has been backported to multiple stable kernel branches as evidenced by five referenced commits.

Defensive priority

medium

Recommended defensive actions

• Apply kernel updates from your Linux distribution that include the drm/amdgpu/vcn4 bounds-checking fix for CVE-2026-46199
• Verify kernel version includes commits addressing VCN4 decoder message parsing (check stable kernel changelogs for relevant backports)
• On systems with AMD GPUs using VCN4 video decode, prioritize patching if untrusted users can access video decode functionality
• Monitor NVD for CVSS scoring updates as analysis completes
• Review system logs for any anomalous AMDGPU VCN4-related errors that may indicate exploitation attempts

Evidence notes

The CVE description confirms this is a resolved Linux kernel vulnerability in drm/amdgpu/vcn4. The fix involves adding bounds checks when parsing decoder messages to prevent OOB reads. Multiple stable kernel branch commits are referenced, indicating backports to supported kernel versions. The vulnerability is classified as 'Awaiting Analysis' in NVD with no CVSS score assigned at time of disclosure.

Official resources