SB2026061033 - Improper input validation in Linux kernel drm xe driver
Published: June 10, 2026
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 vulnerability.
1) Improper input validation (CVE-ID: CVE-2026-46309)
CWE-ID: CWE-20 - Improper input validation
CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a local user to disclose sensitive information.
The vulnerability exists due to improper input validation in xe_vm_madvise_ioctl() when applying a PAT index with XE_COH_NONE to CPU cached memory. A local user can submit a crafted madvise request to disclose sensitive information.
This issue is limited to iGPU configurations, where the GPU can bypass CPU caches and read stale data directly from DRAM from previously freed pages of other processes.
Remediation
Install update from vendor's website.