How is CVE-2026-46230 exploited?

Network reachability (not-required): The attacker needs an existing shell or process on the host; no network access path is required to trigger this vulnerability. Authentication (required): Any low-privilege local account is sufficient; no administrative or special permissions are needed beyond a basic user session. Victim interaction (not-required): No victim action is needed; the attacker can trigger the vulnerable code path unilaterally. Attack complexity (info): Attack complexity is low, meaning the exploit is reliable and does not depend on race conditions, specific memory layouts, or other environmental factors.

What is the impact of CVE-2026-46230?

Reads kernel memory contents outside the intended buffer boundary, which may expose sensitive data such as kernel pointers, credentials, or other process memory. Crashes or destabilizes the affected kernel subsystem (AMD VCN3 video decoder), causing denial of service for GPU-accelerated video decode workloads on the host.

Back to search

HIGHCVE-2026-46230Published 2026-05-28Modified 2026-05-30CNA Linux

CVE-2026-46230: drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg Check bounds against the end of the BO whenever we access the msg.

HarborGuard Analysis

HarborGuard analysis

Synopsis

An out-of-bounds read vulnerability exists in the Linux kernel's AMD GPU VCN3 (Video Core Next) driver, specifically in the decode-message parsing path. The flaw is reachable locally by a process with a low-privilege account and requires no user interaction. Successful exploitation allows an attacker to read kernel memory contents and can also trigger a denial-of-service condition. Patched-image rebuilds at the fixed kernel versions (6.6.140, 6.12.90, 6.18.32, and the upstream commit) are available on HarborGuard for affected environments.

HarborGuard Coverage

Detection

Detection is available across every HarborGuard environment. CVE-2026-46230 is ingested from upstream feeds within minutes of publication and matched against customer images in registries and CI/CD pipelines, including custom-built images that carry affected Linux kernel versions.

Available

Triage

HarborGuard scores this CVE at CVSS 7.1 (HIGH) using the published v3.1 vector. Per-environment compliance policy weighting is applied automatically, and the finding is routed to the appropriate team inbox within each customer organization based on configured ownership rules.

Available

Patch

A patched-image rebuild at the fix versions (6.6.140, 6.12.90, 6.18.32, or the upstream commit 638d3e0b9eb7) becomes available on HarborGuard for environments running an affected kernel version. For customers who opt into auto-remediation, HarborGuard performs the rebuild, runs regression tests, and opens a pull request against affected workloads.

Available

Exploit Conditions

Network reachabilityNot required
The attacker needs an existing shell or process on the host; no network access path is required to trigger this vulnerability.
AuthenticationRequired
Any low-privilege local account is sufficient; no administrative or special permissions are needed beyond a basic user session.
Victim interactionNot required
No victim action is needed; the attacker can trigger the vulnerable code path unilaterally.
Attack complexityDetail
Attack complexity is low, meaning the exploit is reliable and does not depend on race conditions, specific memory layouts, or other environmental factors.

Blast Radius

Reads kernel memory contents outside the intended buffer boundary, which may expose sensitive data such as kernel pointers, credentials, or other process memory.
Crashes or destabilizes the affected kernel subsystem (AMD VCN3 video decoder), causing denial of service for GPU-accelerated video decode workloads on the host.

How HarborGuard Handles This

Available on HarborGuard: detection for CVE-2026-46230 is active across all scanned environments, matching any image that carries a Linux kernel in the affected range (from 87cc7f9ebf7c up to the fix commits). For environments running an affected kernel version, a patched-image rebuild at 6.6.140, 6.12.90, 6.18.32, or the upstream commit is available. For customers who opt into auto-remediation, HarborGuard triggers the rebuild, executes a regression-test run, and opens a PR against affected workloads automatically. Where compliance policy permits, the median time from CVE publication to merged patch PR for high-severity issues is around 90 minutes for environments with auto-remediation enabled. Customers who cannot immediately update the kernel should consider restricting access to AMD GPU devices within affected containers using device-cgroup policies to limit exposure of the VCN3 decode path to unprivileged processes.

See how HarborGuard automates this

CVSS v3.1: 7.1
Severity: HIGH
Fixed in: 0
Affected Products: 2

Fix available

06.6.1406.12.906.18.32638d3e0b9eb77aa53fdd60e2b928761d16ba76fa638e48ee39d0f2af9336f917a6f5d6692dd64d937.0.97.1-rc1870c8738c3774336baedddd0240951d078a703b8b193019860d61e92da395eae2011f2f6716b182fe382e0b81a3e7bd21504fee1d01ae8b08f84d3a7

Affected packages

Linux / Linux
< 638d3e0b9eb77aa53fdd60e2b928761d16ba76fa (from 87cc7f9ebf7ce10f82250002d667ef3e93a79d44) · < 870c8738c3774336baedddd0240951d078a703b8 (from 87cc7f9ebf7ce10f82250002d667ef3e93a79d44) · < 638e48ee39d0f2af9336f917a6f5d6692dd64d93 (from 87cc7f9ebf7ce10f82250002d667ef3e93a79d44) · < e382e0b81a3e7bd21504fee1d01ae8b08f84d3a7 (from 87cc7f9ebf7ce10f82250002d667ef3e93a79d44) · < b193019860d61e92da395eae2011f2f6716b182f (from 87cc7f9ebf7ce10f82250002d667ef3e93a79d44)
Linux / Linux
5.13
Fixed in 0, 6.6.140, 6.12.90, 6.18.32, 7.0.9, 7.1-rc1

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

References

HarborGuard Analysis

Synopsis

HarborGuard Coverage

Exploit Conditions

Blast Radius

How HarborGuard Handles This

Metrics

Fix available