CVE-2026-46006

medium Red Hat
Published: May 27, 2026 (44 days ago)
Last Modified: May 27, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's `drm/nouveau` driver. An integer overflow vulnerability exists in the `nouveau_gem_pushbuf_reloc_apply()` function. This occurs when a 32-bit unsigned integer `reloc_bo_offset` is used in a bounds check, and the addition of a small value can cause it to wrap around, leading to an incorrect comparison against the buffer size. This issue could potentially result in memory corruption or other unspecified security impacts.

CWE

CWE-190

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References