PatchSiren cyber security CVE debrief
CVE-2026-46298 Linux CVE debrief
A vulnerability in the Linux kernel's pseries/papr-hvpipe has been identified, which could lead to a deadlock when an interrupt fires on the same CPU while executing the ->ioctl handler or ->release handler. This is due to a race condition that can occur when the interrupt handler is executed concurrently with the handlers. To address this issue, a patch has been applied to take spin_lock_irq{save|restore} versions of the lock, preventing the deadlock.
- Vendor
- Linux
- Product
- Unknown
- CVSS
- Unknown
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-08
- Original CVE updated
- 2026-06-08
- Advisory published
- 2026-06-08
- Advisory updated
- 2026-06-08
Who should care
Linux kernel users and administrators, particularly those using the pseries/papr-hvpipe, should be aware of this vulnerability and apply the necessary patches to prevent potential deadlocks.
Technical summary
The Linux kernel's pseries/papr-hvpipe is vulnerable to a race condition that can lead to a deadlock. The vulnerability is caused by the ->ioctl handler and ->release handler not properly handling interrupts on the same CPU. To fix this issue, the patch takes spin_lock_irq{save|restore} versions of the lock.
Defensive priority
medium
Recommended defensive actions
- Apply the patch that takes spin_lock_irq{save|restore} versions of the lock to prevent the deadlock.
- Review and update Linux kernel configurations to ensure the pseries/papr-hvpipe is properly secured.
Evidence notes
The CVE record and NVD detail provide information on the vulnerability, and source references are available for further review.
Official resources
-
CVE-2026-46298 CVE record
CVE.org
-
CVE-2026-46298 NVD detail
NVD
-
Source item URL
nvd_modified
-
Source reference
416baaa9-dc9f-4396-8d5f-8c081fb06d67
-
Source reference
416baaa9-dc9f-4396-8d5f-8c081fb06d67
public