CVE-2026-45975

Published: Mag 27, 2026 Last Modified: Mag 27, 2026

ExploitDB:

Other exploit source:

Google Dorks:

Description

AI Translation Available

In the Linux kernel, the following vulnerability has been resolved:

ublk: use READ_ONCE() to read struct ublksrv_ctrl_cmd

struct ublksrv_ctrl_cmd is part of the io_uring_sqe, which may lie in
userspace-mapped memory. It's racy to access its fields with normal
loads, as userspace may write to them concurrently. Use READ_ONCE() to
copy the ublksrv_ctrl_cmd from the io_uring_sqe to the stack. Use the
local copy in place of the one in the io_uring_sqe.

https://git.kernel.org/stable/c/ce63eda3e6d36e2c253febee1c8…

https://git.kernel.org/stable/c/ce63eda3e6d36e2c253febee1c8421ecbd1a680e

https://git.kernel.org/stable/c/ed9f54cc1e335096733aed03c2a…

https://git.kernel.org/stable/c/ed9f54cc1e335096733aed03c2a46de3d58922ed

CVE-2026-45975

Description

Iscriviti alla newsletter