In the Linux kernel, the following vulnerability has been resolved:
media: vidtv: fix pass-by-value structs causing MSAN warnings
vidtvtsnullwriteinto() and vidtvtspcrwriteinto() take their argument structs by value, causing MSAN to report uninit-value warnings. While only vidtvtsnullwriteinto() has triggered a report so far, both functions share the same issue.
Fix by passing both structs by const pointer instead, avoiding the stack copy of the struct along with its MSAN shadow and origin metadata. The functions do not modify the structs, which is enforced by the const qualifier.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43058.json",
"cna_assigner": "Linux"
}