CVE-2026-46182
Kernel Memory Leak in Linux Kernel pseries/papr-hvpipe
Publication date: 2026-05-28
Last updated on: 2026-05-28
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability impact me? :
This vulnerability can lead to a kernel stack memory leak to userspace. As a result, sensitive or confidential information residing in the kernel stack memory could be exposed to unprivileged userspace processes. This could potentially allow attackers to gain insights into kernel memory contents, which might aid in further exploitation or information disclosure attacks.
Can you explain this vulnerability to me?
This vulnerability exists in the Linux kernel, specifically in the pseries/papr-hvpipe component. The issue arises because a structure named papr_hvpipe_hdr is allocated on the kernel stack, but only some of its fields (version and flags) are explicitly initialized. The structure contains reserved padding bytes that remain uninitialized. When this structure is copied to userspace using the copy_to_user() function, these uninitialized bytes can leak kernel stack memory contents to userspace.
The vulnerability was fixed by modifying the code to initialize the entire structure to zero, preventing any uninitialized data from leaking.
What immediate steps should I take to mitigate this vulnerability?
The vulnerability is fixed by a patch that initializes the entire papr_hvpipe_hdr struct to zero, preventing kernel stack memory leaks to userspace.
To mitigate this vulnerability, you should update your Linux kernel to a version that includes this patch.