CVE-2026-43058

Source
https://cve.org/CVERecord?id=CVE-2026-43058
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43058.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-43058
Downstream
Related
Published
2026-05-02T06:11:50.870Z
Modified
2026-06-18T03:54:41.922507436Z
Summary
media: vidtv: fix pass-by-value structs causing MSAN warnings
Details

In the Linux kernel, the following vulnerability has been resolved:

media: vidtv: fix pass-by-value structs causing MSAN warnings

vidtvtsnullwriteinto() and vidtvtspcrwriteinto() take their argument structs by value, causing MSAN to report uninit-value warnings. While only vidtvtsnullwriteinto() has triggered a report so far, both functions share the same issue.

Fix by passing both structs by const pointer instead, avoiding the stack copy of the struct along with its MSAN shadow and origin metadata. The functions do not modify the structs, which is enforced by the const qualifier.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43058.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
f90cf6079bf67988f8b1ad1ade70fc89d0080905
Fixed
a876d72ceba7fe5444005239f363c105767e0ecf
Fixed
a73f84a30975e6c4ae06efd500d31c82564dba10
Fixed
c034d8094fee474eb94142c17643eee2919079b7
Fixed
e3957eb26a3d570aefc6bb184fa8b8a1e9a4e508
Fixed
be57e52e27c7cbfb400a8f255e475cbcff242baa
Fixed
6d75a9ec5bdb8cf8382eaf8f8fe831ba7d58a9d4
Fixed
57b01d945ed68cebe486d495dadc4901a96d3aaa
Fixed
1b2820c8a9887981634020db19f1a2425558b88e
Fixed
5f8e73bde67e931468bc2a1860d78d72f0c6ba41

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43058.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.10.0
Fixed
5.10.258
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.209
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.175
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.136
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.83
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.24
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.14
Type
ECOSYSTEM
Events
Introduced
6.20.0
Fixed
7.0.1

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-43058.json"