In the Linux kernel, the following vulnerability has been resolved:
ublk: Validate SQE128 flag before accessing the cmd
ublkctrlcmddump() accesses (header *)sqe->cmd before IOURINGFSQE128 flag check. This could cause out of boundary memory access.
Move the SQE128 flag check earlier in ublkctrluring_cmd() to return -EINVAL immediately if the flag is not set.
{
"cna_assigner": "Linux",
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/45xxx/CVE-2026-45962.json"
}