CVE-2026-46182
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
pseries/papr-hvpipe: Prevent kernel stack memory leak to userspace
The hdr variable is allocated on the stack and only hdr.version and hdr.flags are initialized explicitly. Because the struct papr_hvpipe_hdr contains reserved padding bytes (reserved[3] and reserved2[40]), these could leak the uninitialized bytes to userspace after copy_to_user().
This patch fixes that by initializing the whole struct to 0.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | cebdb522fd3edd1fe05f7b4a74a27da7dd0f8d86 < 0479b6e9f999cc1cbad7d9f09f574fc387e605d5 | affected |
| Linux | Linux | cebdb522fd3edd1fe05f7b4a74a27da7dd0f8d86 < f88f8e4485b437e0a2f96a7ff1f88aa22d925659 | affected |
| Linux | Linux | cebdb522fd3edd1fe05f7b4a74a27da7dd0f8d86 < cefeed44296261173a806bef988b26bc565da4be | affected |
| Linux | Linux | 6.18 | affected |
| Linux | Linux | 0 < 6.18 | unaffected |
| Linux | Linux | 6.18.30 <= 6.18.* | unaffected |
| Linux | Linux | 7.0.7 <= 7.0.* | unaffected |
| Linux | Linux | 7.1 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/0479b6e9f999cc1cbad7d9f09f574fc387e605d5
- https://git.kernel.org/stable/c/f88f8e4485b437e0a2f96a7ff1f88aa22d925659
- https://git.kernel.org/stable/c/cefeed44296261173a806bef988b26bc565da4be
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.