CVE-2026-46007

MEDIUM

hwmon: (powerz) Avoid cacheline sharing for DMA buffer

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: hwmon: (powerz) Avoid cacheline sharing for DMA buffer Depending on the architecture the transfer buffer may share a cacheline with the following mutex. As the buffer may be used for DMA, that is problematic. Use the high-level DMA helpers to make sure that cacheline sharing can not happen. Also drop the comment, as the helpers are documentation enough. https://sashiko.dev/#/message/20260408175814.934BFC19421%40smtp.kernel.org

Scores

CVSS v3 5.5
EPSS 0.0012
EPSS Percentile 2.3%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published
Products (15)
linux/Kernel 6.13.0 - 6.18.30linux
linux/Kernel 6.19.0 - 7.0.4linux
linux/Kernel 6.7.0 - 6.12.88linux
Linux/Linux < 6.7
Linux/Linux 4381a36abdf1c5c0323c1c51f869dc000115eb20 - 1869da3efe703b016b23d4885f3fe6c1751959c6
Linux/Linux 4381a36abdf1c5c0323c1c51f869dc000115eb20 - 270e5c576a6e30f6b337fa91d35b44c241297533
Linux/Linux 4381a36abdf1c5c0323c1c51f869dc000115eb20 - 2fa2273016a0483217404cfe330967c4ac6832a9
Linux/Linux 4381a36abdf1c5c0323c1c51f869dc000115eb20 - 3023c050af3600bf451153335dea5e073c9a3088
Linux/Linux 6.12.88 - 6.12.*
Linux/Linux 6.18.30 - 6.18.*
... and 5 more
Published May 27, 2026
Tracked Since May 27, 2026