PT-2026-52338 · Linux · Linux

Publicado

2026-06-25

Atualizado

2026-06-25

CVE-2026-53243

Nenhuma

Não há classificações de severidade ou métricas disponíveis. Quando houver, atualizaremos as informações correspondentes na página.

In the Linux kernel, the following vulnerability has been resolved:

rseq: Fix using an uninitialized stack variable in rseq exit user update()

There is an bug in which an uninitialized stack variable is used in rseq exit user update() as reported by syzbot:

BUG: KMSAN: kernel-infoleak in rseq set ids get csaddr include/linux/rseq entry.h:502 [inline]

The local variable:

struct rseq ids ids = {
	.cpu id	 = task cpu(t),
	.mm cid	 = task mm cid(t),
	.node id = cpu to node(ids.cpu id),
};

According to the C standard, the evaluation order of expressions in an initializer list is indeterminately sequenced. The compiler (Clang, in this KMSAN build) evaluates cpu to node(ids.cpu id) before ids.cpu id is initialized with task cpu(t).

This is fixed by moving the assignment of ids.node id outside the structure initialization.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2026-53243

Produtos afetados

Linux

PT-2026-52338 · Linux · Linux

CVE-2026-53243

Identificadores relacionados

Produtos afetados

Referências · 3