SB2026061033 - Improper input validation in Linux kernel drm xe driver



SB2026061033 - Improper input validation in Linux kernel drm xe driver

Published: June 10, 2026

Security Bulletin ID SB2026061033
CSH Severity
Low
Patch available
YES
Number of vulnerabilities 1
Exploitation vector Local access
Highest impact Information disclosure

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 1 vulnerability.


1) Improper input validation (CVE-ID: CVE-2026-46309)

CWE-ID: CWE-20 - Improper input validation

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear


The vulnerability allows a local user to disclose sensitive information.

The vulnerability exists due to improper input validation in xe_vm_madvise_ioctl() when applying a PAT index with XE_COH_NONE to CPU cached memory. A local user can submit a crafted madvise request to disclose sensitive information.

This issue is limited to iGPU configurations, where the GPU can bypass CPU caches and read stale data directly from DRAM from previously freed pages of other processes.


Remediation

Install update from vendor's website.