Volerion logoVolerion
Volerion logoVolerion

Linux Kernel AMDGPU VCN3 Out-of-Bounds Read Vulnerability

Vulnerability

A vulnerability in the Linux kernel's AMDGPU VCN3 decoder can lead to out-of-bounds (OOB) reads. This issue arises when the decoder parses message data without properly checking the bounds against the end of the buffer object (BO). The vulnerability is present in the Linux kernel stable tree.

Impact

The vulnerability can cause out-of-bounds reads, which may lead to information disclosure or memory corruption.

Reproduction

The vulnerability can be reproduced by sending a VCN message that exceeds the bounds of the allocated buffer object. The decoder will attempt to read the message data without proper validation, leading to out-of-bounds access.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been patched. Instructions for downloading the updated kernel can be found on the official Linux kernel website.

Added: May 28, 2026, 10:44 AM
Updated: May 28, 2026, 10:44 AM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
0.6
exploitability
4.3
remediation
7.7
relevance
9.7
threat
4.8
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.