CVE Catalog

CVE-2026-46298

MediumCVSS 4.7
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.15%

4th percentile - higher than 4% of all known CVEs

Summary

A race condition was found in the Linux kernel's pseries/papr-hvpipe module between the ioctl/release handlers and interrupt handling. If an interrupt fires on the same CPU while these handlers are executing, a deadlock can occur.

Risk Assessment

The deadlock can cause system hangs or crashes of critical services running on PowerVM partitions, leading to application downtime.

Recommendation

Apply the Linux kernel patch that uses spin_lock_irq{save|restore} in the ioctl and release handlers. Update the kernel to a version containing this fix.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: pseries/papr-hvpipe: Fix race with interrupt handler While executing ->ioctl handler or ->release handler, if an interrupt fires on the same cpu, then we can enter into a deadlock. This patch fixes both these handlers to take spin_lock_irq{save|restore} versions of the lock to prevent this deadlock.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS