x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache
Summary
| CVE | CVE-2026-46174 |
|---|---|
| State | PUBLISHED |
| Assigner | Linux |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2026-05-28 10:16:33 UTC |
| Updated | 2026-05-30 11:17:24 UTC |
| Description | In the Linux kernel, the following vulnerability has been resolved: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache Make sure resources are not improperly shared in the op cache and cause instruction corruption this way. |
Risk And Classification
Primary CVSS: v3.1 8.8 HIGH from 416baaa9-dc9f-4396-8d5f-8c081fb06d67
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS: 0.000240000 probability, percentile 0.073930000 (date 2026-05-29)
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 3.1 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | Secondary | 8.8 | HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
| 3.1 | CNA | DECLARED | 8.8 | HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
CVSS v3.1 Breakdown
Attack Vector
LocalAttack Complexity
LowPrivileges Required
LowUser Interaction
NoneScope
ChangedConfidentiality
HighIntegrity
HighAvailability
HighCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Vendor Declared Affected Products
| Source | Vendor | Product | Version | Platforms |
|---|---|---|---|---|
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 1e23b30a80b14e5764657401ee2cca030525ae8e git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 f5bc3aef7df46eaaf423d7413ab8833f704ae576 git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 251497955f2314cd39d43191e81c6151dead4c7b git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 ff6fc65b3bf73acc5ee71919154d830ad5431362 git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 9109489cc8c34e50d15575a3d1ff82af586bc1aa git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 28f5ed477eef166d678d6966762cbc1de9b4f436 git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 1cd85a19748b2407830376a5cbae5c0f126016e5 git | Not specified |
| CNA | Linux | Linux | affected f7f3dc00f61261cdc9ccd8b886f21bc4dffd6fd9 c21b90f77687075115d989e53a8ec5e2bb427ab1 git | Not specified |
| CNA | Linux | Linux | affected 5abd1583e06b3963e5c9d915760367de86808b78 git | Not specified |
| CNA | Linux | Linux | affected 4ba461d426490b6ed7e8298c4d3b7a13aa5d2686 git | Not specified |
| CNA | Linux | Linux | affected 5a63725cd18fcee2af6ec46ccb856b64ad3077b4 git | Not specified |
| CNA | Linux | Linux | affected 3.16.58 3.17 semver | Not specified |
| CNA | Linux | Linux | affected 4.4.144 4.5 semver | Not specified |
| CNA | Linux | Linux | affected 4.9.102 4.10 semver | Not specified |
| CNA | Linux | Linux | affected 4.14 | Not specified |
| CNA | Linux | Linux | unaffected 4.14 semver | Not specified |
| CNA | Linux | Linux | unaffected 5.10.256 5.10.* semver | Not specified |
| CNA | Linux | Linux | unaffected 5.15.207 5.15.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.1.173 6.1.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.6.139 6.6.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.12.88 6.12.* semver | Not specified |
| CNA | Linux | Linux | unaffected 6.18.30 6.18.* semver | Not specified |
| CNA | Linux | Linux | unaffected 7.0.7 7.0.* semver | Not specified |
| CNA | Linux | Linux | unaffected 7.1-rc4 * original_commit_for_fix | Not specified |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| git.kernel.org/stable/c/28f5ed477eef166d678d6966762cbc1de9b4f436 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/1cd85a19748b2407830376a5cbae5c0f126016e5 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/ff6fc65b3bf73acc5ee71919154d830ad5431362 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/f5bc3aef7df46eaaf423d7413ab8833f704ae576 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/c21b90f77687075115d989e53a8ec5e2bb427ab1 | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/1e23b30a80b14e5764657401ee2cca030525ae8e | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/251497955f2314cd39d43191e81c6151dead4c7b | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| git.kernel.org/stable/c/9109489cc8c34e50d15575a3d1ff82af586bc1aa | 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | git.kernel.org | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.