CVE Catalog

CVE-2026-46065

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.13%

3th percentile - higher than 3% of all known CVEs

Summary

A vulnerability in the Linux kernel related to disconnecting deferred I/O from the lifecycle of the fb_info structure has been resolved. A new fb_deferred_io_state structure has been introduced to hold the state of deferred I/O, preventing issues with accessing graphics memory after device hot-unplug.

Risk Assessment

This vulnerability could lead to undefined memory states, resulting in SIGBUS errors in applications using graphics memory. It may affect system stability and data security.

Recommendation

It is recommended to update the Linux kernel to the latest version to eliminate this vulnerability and minimize the risk of errors related to graphics memory access.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: fbdev: defio: Disconnect deferred I/O from the lifetime of struct fb_info Hold state of deferred I/O in struct fb_deferred_io_state. Allocate an instance as part of initializing deferred I/O and remove it only after the final mapping has been closed. If the fb_info and the contained deferred I/O meanwhile goes away, clear struct fb_deferred_io_state.info to invalidate the mapping. Any access will then result in a SIGBUS signal. Fixes a long-standing problem, where a device hot-unplug happens while user space still has an active mapping of the graphics memory. The hot- unplug frees the instance of struct fb_info. Accessing the memory will operate on undefined state.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS