NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-46006

Summary	In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix u32 overflow in pushbuf reloc bounds check nouveau_gem_pushbuf_reloc_apply() validates each relocation with if (r->reloc_bo_offset + 4 > nvbo->bo.base.size) but reloc_bo_offset is __u32 (uapi/drm/nouveau_drm.h) and the integer literal 4 promotes to unsigned int, so the addition is performed in 32 bits and wraps before the comparison against the size_t bo size. Cast to u64 so the addition happens in 64-bit arithmetic. [ Add Fixes: tag. - Danilo ]
Publication Date	May 27, 2026, 11:17 p.m.
Registration Date	May 28, 2026, 4:12 a.m.
Last Update	May 27, 2026, 11:48 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://git.kernel.org/stable/c/2fc87d37be1b730a149b035f9375fdb8cc5333a5	416baaa9-dc9f-4396-8d5f-8c081fb06d67
2	https://git.kernel.org/stable/c/332884f5eb79dd60a7162b079d09d39208567a31	416baaa9-dc9f-4396-8d5f-8c081fb06d67
3	https://git.kernel.org/stable/c/d749a9a0ee4014681487e7ae549901aa8c176637	416baaa9-dc9f-4396-8d5f-8c081fb06d67
4	https://git.kernel.org/stable/c/e441d5c23ec644c8d27593db3b8928e8933512a9	416baaa9-dc9f-4396-8d5f-8c081fb06d67
5	https://git.kernel.org/stable/c/fa297e919d1680c38ab268ff952b1698dac987f6	416baaa9-dc9f-4396-8d5f-8c081fb06d67

Common Vulnerabilities List