CVE-2026-46314

medium Red Hat
Published: June 8, 2026 (32 days ago)
Last Modified: June 8, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's `drm/v3d` component. A local user can exploit this vulnerability by crafting a self-referential multisync extension with zero synchronization counts. This bypasses existing guards, leading to an infinite loop within the kernel. The consequence is a Denial of Service (DoS), where the affected system's CPU core is indefinitely consumed, blocking the calling thread.

CWE

CWE-606

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References