CVE-2026-46298
MediumCVSS 4.7Exploitation Probability (EPSS)
Low risk4th percentile - higher than 4% of all known CVEs
Summary
A race condition was found in the Linux kernel's pseries/papr-hvpipe module between the ioctl/release handlers and interrupt handling. If an interrupt fires on the same CPU while these handlers are executing, a deadlock can occur.
Risk Assessment
The deadlock can cause system hangs or crashes of critical services running on PowerVM partitions, leading to application downtime.
Recommendation
Apply the Linux kernel patch that uses spin_lock_irq{save|restore} in the ioctl and release handlers. Update the kernel to a version containing this fix.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: pseries/papr-hvpipe: Fix race with interrupt handler While executing ->ioctl handler or ->release handler, if an interrupt fires on the same cpu, then we can enter into a deadlock. This patch fixes both these handlers to take spin_lock_irq{save|restore} versions of the lock to prevent this deadlock.

