CVE-2026-46229 Linux CVE debrief

Who should care

Organizations running ROCm/AMD GPU compute workloads, multi-tenant GPU cloud providers, HPC environments using RCCL for inter-GPU communication, and Linux distributions shipping AMDGPU kernel drivers

Technical summary

The drm/amdkfd driver in the Linux kernel allocates VRAM for compute workloads without clearing memory contents, unlike the standard GEM ioctl path. KFD allocations set AMDGPU_GEM_CREATE_VRAM_WIPE_ON_RELEASE but omit AMDGPU_GEM_CREATE_VRAM_CLEARED, allowing stale data from previous GPU operations to persist in newly allocated buffers. This can expose page table remnants or other sensitive data to subsequent compute kernels and causes protocol corruption in RCCL P2P transport where handshake fields contain unexpected non-zero values. The fix adds the missing VRAM_CLEARED flag to KFD allocation paths, ensuring memory is zeroed before use.

Defensive priority

medium

Recommended defensive actions

• Apply kernel updates containing the drm/amdkfd VRAM clearing fix for affected stable branches
• Monitor ROCm/RCCL workloads for ptrExchange/head/tail field corruption errors as indicators of this issue
• Verify AMDGPU_GEM_CREATE_VRAM_CLEARED is present in KFD allocation paths when auditing custom kernel builds
• Review GPU compute environments for potential information disclosure from uncleared VRAM between tenant workloads
• Consider enabling additional memory clearing policies in ROCm deployments until patches are deployed

Evidence notes

The CVE description and kernel commit references confirm the vulnerability exists in the drm/amdkfd driver. The fix involves adding AMDGPU_GEM_CREATE_VRAM_CLEARED to KFD VRAM allocation flags, matching the behavior already implemented in amdgpu_gem_create_ioctl() and amdgpu_mode_dumb_create(). Multiple stable kernel branch commits are referenced, indicating backports to supported releases.

Official resources