CVE-2026-46182

May 28, 2026, 1:44 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: pseries/papr-hvpipe: Prevent kernel stack memory leak to userspace The hdr variable is allocated on the stack and only hdr.version and hdr.flags are initialized explicitly. Because the struct papr_hvpipe_hdr contains reserved padding bytes (reserved[3] and reserved2[40]), these could leak the uninitialized bytes to userspace after copy_to_user(). This patch fixes that by initializing the whole struct to 0.

Product(s) Impacted

Vendor Product Versions
Linux
  • Linux Kernel
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o linux linux_kernel / / / / / / / /

References

https://git.kernel.org/stable/c/0479b6e9f999cc1cbad7d9f09f574fc387e605d5
https://git.kernel.org/stable/c/cefeed44296261173a806bef988b26bc565da4be
https://git.kernel.org/stable/c/f88f8e4485b437e0a2f96a7ff1f88aa22d925659

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2026-05-28
CVE-2026-46182

Timeline

Published: May 28, 2026, 10:16 a.m.
Last Modified: May 28, 2026, 1:44 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.