CVE-2026-23335

struct irdmacreateah_resp { // 8 bytes, no padding __u32 ahid; // offset 0 - SET (uresp.ahid = ah->scah.ahinfo.ah_idx) __u8 rsvd[4]; // offset 4 - NEVER SET <- LEAK };

rsvd[4]: 4 bytes of stack memory leaked unconditionally. Only ahid is assigned before ibrespond_udata().

The reserved members of the structure were not zeroed.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23335.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

b48c24c2d710cf34810c555dcef883a3d35a9c08

Fixed

14b47c07c69930254f549a17ee245c80a65b1609

Fixed

1b1fac4c7a3ab7f52e9cfb91e5c91216646ca4d8

Fixed

2fd37450d271d74b3847baed284f9cfdf198c6f8

Fixed

cfe962216c164fe2b1c1fb6ac925a7413f5abc84

Fixed

c9bd0007c4bdb7806bbd323287e50f9cf467c51a

Fixed

74586c6da9ea222a61c98394f2fc0a604748438c

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-23335.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

5.14.0

Fixed

6.1.167

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.6.130

Type: ECOSYSTEM
Events: Introduced

6.7.0

Fixed

6.12.77

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.18.17

Type: ECOSYSTEM
Events: Introduced

6.19.0

Fixed

6.19.7

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-23335.json"