CVE-2026-46216

Source
https://cve.org/CVERecord?id=CVE-2026-46216
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46216.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-46216
Downstream
Related
Published
2026-05-28T09:40:32.891Z
Modified
2026-07-08T08:09:41.771434785Z
Summary
drm/xe/hdcp: Add NULL check for media_gt in intel_hdcp_gsc_check_status()
Details

In the Linux kernel, the following vulnerability has been resolved:

drm/xe/hdcp: Add NULL check for mediagt in intelhdcpgsccheck_status()

When media GT is disabled via configfs, there is no allocation for mediagt, which is kept as NULL. In such scenario, intelhdcpgsccheck_status() results in a kernel pagefault error due to &gt->uc.gsc being evaluated as an invalid memory address.

Fix that by introducing a NULL check on media_gt and bailing out early if so.

While at it, also drop the NULL check for gsc, since it can't be NULL if media_gt is not NULL.

v2: - Get address for gsc only after checking that gt is not NULL. (Shuicheng) - Drop the NULL check for gsc. (Shuicheng) v3: - Add "Fixes" and "Cc: <stable...>" tags. (Matt)

(cherry picked from commit bfaf87e84ca3ca3f6e275f9ae56da47a8b55ffd1)

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46216.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
4af50beb4e0f9e6aed9cd53436c099f1dba826f1
Fixed
cad210d2851f3a7d9573bdfc02aa61d9287bbe8c
Fixed
814326e86e929b865020ff44f4576dbdfe3f7ff3
Fixed
d8ab4b47edf4578dbfbe5e95817107a514fa34cc
Fixed
60a1e131a811b68703da58fd805ab359b704ab03

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46216.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.10.0
Fixed
6.12.92
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.34
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.9

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46216.json"