CVE-2026-46001

Source
https://cve.org/CVERecord?id=CVE-2026-46001
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46001.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-46001
Downstream
Related
Published
2026-05-27T12:55:56.128Z
Modified
2026-06-18T03:56:32.539087190Z
Summary
hwmon: (pt5161l) Fix bugs in pt5161l_read_block_data()
Details

In the Linux kernel, the following vulnerability has been resolved:

hwmon: (pt5161l) Fix bugs in pt5161lreadblock_data()

Fix two bugs in pt5161lreadblock_data():

  1. Buffer overrun: The local buffer rbuf is declared as u8 rbuf[24], but i2csmbusreadblockdata() can return up to I2CSMBUSBLOCKMAX (32) bytes. The i2c-core copies the data into the caller's buffer before the return value can be checked, so the post-read length validation does not prevent a stack overrun if a device returns more than 24 bytes. Resize the buffer to I2CSMBUSBLOCKMAX.

  2. Unexpected positive return on length mismatch: When all three retries are exhausted because the device returns data with an unexpected length, i2csmbusreadblockdata() returns a positive byte count. The function returns this directly, and callers treat any non-negative return as success, processing stale or incomplete buffer contents. Return -EIO when retries are exhausted with a positive return value, preserving the negative error code on I2C failure.

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46001.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1b2ca93cd0592b1fcbc6f8b64e02552bc15f4bb4
Fixed
7eccabff1c9ec15e4b6fe186d5c147b13a9cdb4e
Fixed
95d48e37a1304d6148406c799479c0fb505aefa7
Fixed
a11aa9c5fd9dfe62be7cfec1f2a7546afb77254c
Fixed
24c73e93d6a756e1b8626bb259d2e07c5b89b370

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46001.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.9.0
Fixed
6.12.86
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.27
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.4

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46001.json"