CVE-2026-46007

Source
https://cve.org/CVERecord?id=CVE-2026-46007
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46007.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-46007
Downstream
Related
Published
2026-05-27T12:56:06.623Z
Modified
2026-06-18T03:57:01.148098123Z
Summary
hwmon: (powerz) Avoid cacheline sharing for DMA buffer
Details

In the Linux kernel, the following vulnerability has been resolved:

hwmon: (powerz) Avoid cacheline sharing for DMA buffer

Depending on the architecture the transfer buffer may share a cacheline with the following mutex. As the buffer may be used for DMA, that is problematic.

Use the high-level DMA helpers to make sure that cacheline sharing can not happen.

Also drop the comment, as the helpers are documentation enough.

https://sashiko.dev/#/message/20260408175814.934BFC19421%40smtp.kernel.org

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46007.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
4381a36abdf1c5c0323c1c51f869dc000115eb20
Fixed
270e5c576a6e30f6b337fa91d35b44c241297533
Fixed
1869da3efe703b016b23d4885f3fe6c1751959c6
Fixed
2fa2273016a0483217404cfe330967c4ac6832a9
Fixed
3023c050af3600bf451153335dea5e073c9a3088

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46007.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.88
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.30
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.4

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46007.json"