GHSA-6j35-qr59-823q
A vulnerability in the Linux kernel's mctp i2c driver caused uninitialized stack bytes to be returned during i2c read operations. This was due to missing initialization of event handler read bytes, resulting in potentially unpredictable data being read. The issue was fixed by setting read bytes to 0xff, ensuring consistent and safe read values.
AI Analysis
Technical Summary
The Linux kernel mctp i2c driver did not initialize event handler read bytes properly, causing i2c read operations to return uninitialized stack data (a u8 value) on certain platforms such as i2c-aspeed and i2c-npcm7xx. This could lead to unreliable or undefined data being read from the i2c bus. The fix sets the read bytes to 0xff, preventing the use of uninitialized memory during reads. This was verified using the i2ctransfer tool against an mctp-i2c instance.
Potential Impact
The vulnerability does not affect confidentiality or integrity but impacts availability by causing unreliable or unpredictable data to be returned during i2c read operations. This could potentially disrupt device communication relying on the mctp i2c interface. There is no indication of privilege escalation or remote code execution. The CVSS vector indicates local attack with low complexity and no user interaction required, resulting in a moderate impact on availability.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. The description indicates the issue has been resolved in the Linux kernel by initializing the event handler read bytes to 0xff. Users should apply the official Linux kernel updates that include this fix once available.
GHSA-6j35-qr59-823q
Description
A vulnerability in the Linux kernel's mctp i2c driver caused uninitialized stack bytes to be returned during i2c read operations. This was due to missing initialization of event handler read bytes, resulting in potentially unpredictable data being read. The issue was fixed by setting read bytes to 0xff, ensuring consistent and safe read values.
CVSS v3.1
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The Linux kernel mctp i2c driver did not initialize event handler read bytes properly, causing i2c read operations to return uninitialized stack data (a u8 value) on certain platforms such as i2c-aspeed and i2c-npcm7xx. This could lead to unreliable or undefined data being read from the i2c bus. The fix sets the read bytes to 0xff, preventing the use of uninitialized memory during reads. This was verified using the i2ctransfer tool against an mctp-i2c instance.
Potential Impact
The vulnerability does not affect confidentiality or integrity but impacts availability by causing unreliable or unpredictable data to be returned during i2c read operations. This could potentially disrupt device communication relying on the mctp i2c interface. There is no indication of privilege escalation or remote code execution. The CVSS vector indicates local attack with low complexity and no user interaction required, resulting in a moderate impact on availability.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. The description indicates the issue has been resolved in the Linux kernel by initializing the event handler read bytes to 0xff. Users should apply the official Linux kernel updates that include this fix once available.
Technical Details
- Gcve Source
- db.gcve.eu
- Osv Id
- GHSA-6j35-qr59-823q
- Osv Schema Version
- 1.4.0
- Aliases
- ["CVE-2026-45865"]
- Ecosystems
- []
- Database Specific Severity
- MODERATE
- Cvss Version
- 3.1
Threat ID: 6a3ef7f327e9c79719036ea4
Added to database: 06/26/2026, 22:06:43 UTC
Last enriched: 06/26/2026, 22:52:23 UTC
Last updated: 06/26/2026, 23:11:16 UTC
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.