CVE-2026-46311

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu/userq: fix access to stale wptr mapping

Use drm_exec to take both locks i.e vm root bo and wptr_obj bo to access the mapping data properly.

This fixes the security issue of unmap the wptr_obj while a queue creation is in progress and passing other bo at same address.

(cherry picked from commit 1fc6c8ab45dbee096469c08c13f6099d57a52d6c)

Affected Software

VendorProductVersion RangeStatus
LinuxLinux5fb2f7fc21a3668e5794cc0d153641b9719713e1 < 336a9186f3a4b65bbd865d93936605ac8a1a3991affected
LinuxLinux5fb2f7fc21a3668e5794cc0d153641b9719713e1 < 6da7b1242da4455b11c24ce667d1cab1a348c8eaaffected
LinuxLinux6.16affected
LinuxLinux0 < 6.16unaffected
LinuxLinux7.0.9 <= 7.0.*unaffected
LinuxLinux7.1 <= *unaffected

Weaknesses

References