CVE-2026-46151

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.11-1.1

Description A heap leak exists in the usblp driver when handling IEEE 1284 device IDs. The usblp ctrl msg() function discards the actual number of bytes transferred during a usb control msg() call. If a device provides a short response to a GET DEVICE ID control transfer, the usblp cache device id string() function may trust a length prefix that exceeds the actual data received. This allows a device to expose uninitialized heap data through the ieee1284 id sysfs attribute and the IOCNR GET DEVICE ID ioctl, which uses copy to user() to send the claimed length of data to the user.

Recommendations Update to version 7.0.11-1.1 or newer.