CVE-2026-46058

medium Red Hat
Published: May 27, 2026 (44 days ago)
Last Modified: May 27, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel, specifically within the amphion video processing unit (VPU) driver. A race condition, a situation where multiple operations occur in an unpredictable order, exists in the Video for Linux 2 (V4L2) media-to-memory (m2m) framework. This vulnerability allows a local attacker to exploit a timing issue, leading to a use-after-free error that can cause a kernel panic and result in a denial of service for the system.

CWE

CWE-364

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References