CVE-2026-45930
net: mctp: ensure our nlmsg responses are initialised
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
7th
In the Linux kernel, the following vulnerability has been resolved: net: mctp: ensure our nlmsg responses are initialised Syed Faraz Abrar (@farazsth98) from Zellic, and Pumpkin (@u1f383) from DEVCORE Research Team working with Trend Micro Zero Day Initiative report that a RTM_GETNEIGH will return uninitalised data in the pad bytes of the ndmsg data. Ensure we're initialising the netlink data to zero, in the link, addr and neigh response messages.
| Vendor | linux |
| Product | linux |
| Ecosystems | |
| Industries | Technology |
| Published | May 27, 2026 |
| Last Updated | Jun 9, 2026 |
Stay Ahead of the Next One
Get instant alerts for linux linux
Be the first to know when new unknown vulnerabilities affecting linux linux are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Linux / Linux
583be982d93479ea3d85091b0fd0b01201ede87d < 976612471a9e6ead6ceffc241e4d0a1aac90b36a 583be982d93479ea3d85091b0fd0b01201ede87d < 54ed418de62a148a655262da682a050fa05f7924 583be982d93479ea3d85091b0fd0b01201ede87d < 6fb6a97c86abb8592158088afaea0eb464cf9de1 583be982d93479ea3d85091b0fd0b01201ede87d < a6a9bc544b675d8b5180f2718ec985ad267b5cbf
Linux / Linux
5.15
References
git.kernel.org: https://git.kernel.org/stable/c/976612471a9e6ead6ceffc241e4d0a1aac90b36a git.kernel.org: https://git.kernel.org/stable/c/54ed418de62a148a655262da682a050fa05f7924 git.kernel.org: https://git.kernel.org/stable/c/6fb6a97c86abb8592158088afaea0eb464cf9de1 git.kernel.org: https://git.kernel.org/stable/c/a6a9bc544b675d8b5180f2718ec985ad267b5cbf