QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2026-45962

Back to search

CVE-2026-45962

Published: May 27, 2026

Modified: May 27, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ublk: Validate SQE128 flag before accessing the cmd ublk_ctrl_cmd_dump() accesses (header *)sqe->cmd before IO_URING_F_SQE128 flag check. This could cause out of boundary memory access. Move the SQE128 flag check earlier in ublk_ctrl_uring_cmd() to return -EINVAL immediately if the flag is not set.

VendorProductVersions

Linux

Linux

affected
71f28f3136aff5890cd56de78abc673f8393cad9 - < 4b4dff498f46e9802f71bc84258bf73065f51c6a
affected
71f28f3136aff5890cd56de78abc673f8393cad9 - < 31cac6acf77ece488f29fb8f79589d9298e969c8
affected
71f28f3136aff5890cd56de78abc673f8393cad9 - < dbe8e81a2ec608f87f79a34f6444cd62f6a243bb
affected
71f28f3136aff5890cd56de78abc673f8393cad9 - < f75a5555e0049e7857eae25b60aee98b80e287ec
affected
71f28f3136aff5890cd56de78abc673f8393cad9 - < 17d33ba7291100008360b5a354962db37ad80684

+1 more versions

Linux

Linux

affected
6.0
unaffected
0 - < 6.0
unaffected
6.1.165 - <= 6.1.*
unaffected
6.6.128 - <= 6.6.*
unaffected
6.12.75 - <= 6.12.*

+3 more versions

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now
CVE-2026-45962 - Security Vulnerability | QwikSec