CVE-2026-22978

Summary

In the Linux kernel, the following vulnerability has been resolved:

wifi: avoid kernel-infoleak from struct iw_point

struct iw_point has a 32bit hole on 64bit arches.

struct iw_point { void __user pointer; / Pointer to the data (in user space) / __u16 length; / number of fields or size in bytes / __u16 flags; / Optional params */ };

Make sure to zero the structure to avoid disclosing 32bits of kernel data to user space.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux87de87d5e47f94b4ea647a5bd1bc8dc1f7930db4 < d943b5f592767b107ba8c12a902f17431350378caffected
LinuxLinux87de87d5e47f94b4ea647a5bd1bc8dc1f7930db4 < a3827e310b5a73535646ef4a552d53b3c8bf74f6affected
LinuxLinux87de87d5e47f94b4ea647a5bd1bc8dc1f7930db4 < 442ceac0393185e9982323f6682a52a53e8462b1affected
LinuxLinux87de87d5e47f94b4ea647a5bd1bc8dc1f7930db4 < d21ec867d84c9f3a9845d7d8c90c9ce35dbe48f8affected
LinuxLinux87de87d5e47f94b4ea647a5bd1bc8dc1f7930db4 < 024f71a57d563fbe162e528c8bf2d27e9cac7c7baffected
LinuxLinux87de87d5e47f94b4ea647a5bd1bc8dc1f7930db4 < e3c35177103ead4658b8a62f41e3080d45885464affected
LinuxLinux87de87d5e47f94b4ea647a5bd1bc8dc1f7930db4 < 21cbf883d073abbfe09e3924466aa5e0449e7261affected
LinuxLinux2.6.27affected
LinuxLinux0 < 2.6.27unaffected
LinuxLinux5.10.248 <= 5.10.*unaffected
LinuxLinux5.15.198 <= 5.15.*unaffected
LinuxLinux6.1.161 <= 6.1.*unaffected
LinuxLinux6.6.121 <= 6.6.*unaffected
LinuxLinux6.12.66 <= 6.12.*unaffected
LinuxLinux6.18.6 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

References