CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/06/08 3:50 p.m.•5 views

CVE-2026-46311

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/userq: fix access to stale wptr mapping Use drmexec to take both locks i.e vm root bo and wptrobj bo to access the mapping data properly. This fixes the security issue of unmap the wptrobj while a queue creation is in...

5.4AI score0.00112EPSS

Cvelist•added 2026/06/08 3:50 p.m.•34 views

CVE-2026-46311 drm/amdgpu/userq: fix access to stale wptr mapping

7.8CVSS0.00112EPSS

CNNVD•added 2026/06/08 12:0 a.m.•4 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper access to the wptr mapping in the drm amdgpu userq component, potentially leading to...

7.8CVSS5.3AI score0.00112EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Validated user queue size constraints. Added validation to ensure that user queue sizes meet hardware requirements: - The size must be a power of two for efficient ring buffer wrapping. - The size must be at least...

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Exploits0References1

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Validation of doorbelloffset during user queue creation. The function amdgpuuserqgetdoorbellindex passes the user-provided doorbelloffset to amdgpudoorbellindexonbar without proper checking. An arbitrarily large...

7.1CVSS5.8AI score0.00124EPSS

Exploits0References1

RedhatCVE•added 2026/05/08 10:10 p.m.•5 views

CVE-2026-43400

A flaw was found in the Linux kernel's drm/amdgpu module. A local user could exploit this vulnerability by providing excessively large input values to the amdgpuuserqsignalioctl function. This lack of proper input validation can lead to an Out-Of-Memory OOM condition, causing a Denial of Service...

EUVD•added 2026/05/08 3:31 p.m.•7 views

EUVD-2026-28704

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add upper bound check on user inputs in wait ioctl Huge input values in amdgpuuserqwaitioctl can lead to a OOM and could be exploited. So check these input value against AMDGPUUSERQMAXHANDLES which is big enough value...

5.8AI score0.00126EPSS

EUVD•added 2026/05/08 3:31 p.m.•6 views

EUVD-2026-28705

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/userq: Fix reference leak in amdgpuuserqwaitioctl Drop reference to syncobj and timeline fence when aborting the ioctl due output array being too small. cherry picked from commit 68951e9c3e6bb22396bc42ef2359751c8315dd2...

5.8AI score0.00121EPSS

Positive Technologies•added 2026/05/08 12:0 a.m.•8 views

PT-2026-39061

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the drm/amdgpu component where the amdgpu userq signal ioctl function lacks proper upper bound checks on user inputs. Providing excessively large input values can lead t...

5.5CVSS5.4AI score0.00126EPSS

Exploits0References14

Microsoft CVE•added 2026/05/07 8:8 a.m.•8 views

drm/amdgpu: validate user queue size constraints

...

7.1CVSS5.8AI score0.00126EPSS

Exploits0

RedhatCVE•added 2026/05/06 8:58 p.m.•5 views

CVE-2026-43195

A flaw was found in the Linux kernel's drm/amdgpu graphics driver. This vulnerability arises from inadequate validation of user-provided queue sizes, which do not meet hardware requirements. An attacker could exploit this by supplying invalid queue size configurations, potentially leading to GPU...

CNNVD•added 2026/05/06 12:0 a.m.•8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of verification of the user queue size constraint in the drm amdgpu mechanism. This...

AstraLinux•added 2026/05/03 11:59 p.m.•0 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: RDMA/qedr: Fixed the qedrcreateuserqp error flow. Avoid the following warning by ensuring that allocated resources are freed in case qedrinituserqueue fails. ----------- Cut here --- WARNING: CPU: 0 PID: 143192 at...

5.5CVSS6.3AI score0.00242EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/userq: Fixed the issue of a reference leak during queue teardown in version 2. The user mode queue maintains a pointer to the most recent fence in userq-lastfence. This pointer retains an additional dmafence reference...

5.3AI score0.00177EPSS

RedhatCVE•added 2026/05/01 10:58 p.m.•3 views

CVE-2026-31766

A flaw was found in the Linux kernel's AMD GPU amdgpu driver. A local user could exploit this vulnerability by providing a malformed doorbell offset during user queue creation. This lack of proper bounds checking allows the offset to exceed the allocated memory, potentially corrupting critical...

7.1CVSS5.8AI score0.00124EPSS

NVD•added 2026/05/01 3:16 p.m.•2 views

CVE-2026-31766

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate doorbelloffset in user queue creation amdgpuuserqgetdoorbellindex passes the user-provided doorbelloffset to amdgpudoorbellindexonbar without bounds checking. An arbitrarily large doorbelloffset can cause the...

7.1CVSS0.00124EPSS

Cvelist•added 2026/05/01 2:14 p.m.•28 views

CVE-2026-31766 drm/amdgpu: validate doorbell_offset in user queue creation

7.1CVSS0.00124EPSS

EUVD•added 2026/05/01 2:14 p.m.•7 views

EUVD-2026-26579

5.8AI score0.00124EPSS