5.5

CVE-2026-43221

ipmi: ipmb: initialise event handler read bytes

In the Linux kernel, the following vulnerability has been resolved:

ipmi: ipmb: initialise event handler read bytes

IPMB doesn't use i2c reads, but the handler needs to set a value.
Otherwise an i2c read will return an uninitialised value from the bus
driver.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.16 < 6.1.165
LinuxLinux Kernel Version >= 6.2 < 6.6.128
LinuxLinux Kernel Version >= 6.7 < 6.12.75
LinuxLinux Kernel Version >= 6.13 < 6.18.16
LinuxLinux Kernel Version >= 6.19 < 6.19.6
LinuxLinux Kernel Version7.0 Updaterc1
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.13% 0.027
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-908 Use of Uninitialized Resource

The product uses or accesses a resource that has not been initialized.

https://git.kernel.org/stable/c/905554ebd76aeee370bfd5136ea11e0b9d75c6f1
Patch
https://git.kernel.org/stable/c/56d5c0557e53c4d8d92a619fa83eaae178165e07
Patch
https://git.kernel.org/stable/c/2dfbc8c17dd161885336e77e71c336cd62cf6748
Patch
https://git.kernel.org/stable/c/f726b3a57e00bb6249c67714c11ae8b4b31719a1
Patch
https://git.kernel.org/stable/c/102712417bb6aa9a00d852bc59cb0a276db486c4
Patch
https://git.kernel.org/stable/c/9f235ccecd03c436cb1683eac16b12f119e54aa9
Patch