CVE-2026-43005
Buffer Overflow Fix in Linux Kernel hwmon tps53679 Driver
Publication date: 2026-05-01
Last updated on: 2026-05-01
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the Linux kernel's hardware monitoring driver for the tps53679 chip. The function i2c_smbus_read_block_data() can return 0, indicating a zero-length read. However, the code did not properly handle this case and accessed an array element at buf[-1], which is out-of-bounds and reads memory before the buffer on the stack.
The fix involved changing the condition to treat a zero-length read as an error, preventing this out-of-bounds access.
How can this vulnerability impact me? :
The vulnerability can lead to out-of-bounds memory access on the stack, which may cause undefined behavior such as crashes or potentially allow an attacker to read sensitive memory or execute arbitrary code depending on the context and exploitability.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, update the Linux kernel to a version where the issue has been fixed. The fix involves changing the check in the tps53679 driver to treat zero-length reads as errors, preventing out-of-bounds array access.
Applying the latest kernel patches or upgrading to a kernel version released after 2026-05-01 that includes this fix is recommended.