CVE-2026-23059

EPSS -
Veröffentlicht 04.02.2026 16:07:42
Zuletzt bearbeitet 04.02.2026 17:16:16
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

scsi: qla2xxx: Sanitize payload size to prevent member overflow

In qla27xx_copy_fpin_pkt() and qla27xx_copy_multiple_pkt(), the frame_size
reported by firmware is used to calculate the copy length into
item->iocb. However, the iocb member is defined as a fixed-size 64-byte
array within struct purex_item.

If the reported frame_size exceeds 64 bytes, subsequent memcpy calls will
overflow the iocb member boundary. While extra memory might be allocated,
this cross-member write is unsafe and triggers warnings under
CONFIG_FORTIFY_SOURCE.

Fix this by capping total_bytes to the size of the iocb member (64 bytes)
before allocation and copying. This ensures all copies remain within the
bounds of the destination structure member.

Betroffene Produkte Warnungen 0 Metriken 0 CWE 0 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 408bfa8d70f79ac696cec1bdbdfb3bf43a02e6d0

Version 875386b98857822b77ac7f95bdf367b70af5b78c

Status affected

Version < 1922468a4a80424e5a69f7ba50adcee37f4722e9

Version 875386b98857822b77ac7f95bdf367b70af5b78c

Status affected

Version < aa14451fa5d5f2de919384c637e2a8c604e1a1fe

Version 875386b98857822b77ac7f95bdf367b70af5b78c

Status affected

Version < 19bc5f2a6962dfaa0e32d0e0bc2271993d85d414

Version 875386b98857822b77ac7f95bdf367b70af5b78c

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.6

Status affected

Version < 6.6

Version 0

Status unaffected

Version <= 6.6.*

Version 6.6.122

Status unaffected

Version <= 6.12.*

Version 6.12.68

Status unaffected

Version <= 6.18.*

Version 6.18.8

Status unaffected

Version <= *

Version 6.19-rc7

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

Es wurden noch keine Metriken (CVSS, EPSS) zu dieser CVE veröffentlicht.

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/408bfa8d70f79ac696cec1bdbdfb3bf43a02e6d0

https://git.kernel.org/stable/c/1922468a4a80424e5a69f7ba50adcee37f4722e9

https://git.kernel.org/stable/c/aa14451fa5d5f2de919384c637e2a8c604e1a1fe

https://git.kernel.org/stable/c/19bc5f2a6962dfaa0e32d0e0bc2271993d85d414

https://nvd.nist.gov/vuln/detail/CVE-2026-23059

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-23059

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-23059

EUVD