In the Linux kernel, the following vulnerability has been resolved:

ipmi: ipmb: initialise event handler read bytes

IPMB doesn't use i2c reads, but the handler needs to set a value.
Otherwise an i2c read will return an uninitialised value from the bus
driver.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Linux Linux unaffected
Version Status Constraints
63c4eb347164845b380089012fe43992511c0ad3 affected < 905554ebd76aeee370bfd5136ea11e0b9d75c6f1
63c4eb347164845b380089012fe43992511c0ad3 affected < 56d5c0557e53c4d8d92a619fa83eaae178165e07
63c4eb347164845b380089012fe43992511c0ad3 affected < 2dfbc8c17dd161885336e77e71c336cd62cf6748
63c4eb347164845b380089012fe43992511c0ad3 affected < f726b3a57e00bb6249c67714c11ae8b4b31719a1
63c4eb347164845b380089012fe43992511c0ad3 affected < 102712417bb6aa9a00d852bc59cb0a276db486c4
63c4eb347164845b380089012fe43992511c0ad3 affected < 9f235ccecd03c436cb1683eac16b12f119e54aa9
Linux Linux affected
Version Status Constraints
5.16 affected
0 unaffected < 5.16
6.1.165 unaffected ≤ 6.1.*
6.6.128 unaffected ≤ 6.6.*
6.12.75 unaffected ≤ 6.12.*
6.18.16 unaffected ≤ 6.18.*
6.19.6 unaffected ≤ 6.19.*
7.0 unaffected ≤ *

No data.

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors Products
Linux Subscribe
Linux Kernel Subscribe

Project Subscriptions

Vendors Products
Linux Subscribe
Linux Kernel Subscribe
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://git.kernel.org/stable/c/102712417bb6aa9a00d852bc59cb0a276db486c4 cve-icon cve-icon
https://git.kernel.org/stable/c/2dfbc8c17dd161885336e77e71c336cd62cf6748 cve-icon cve-icon
https://git.kernel.org/stable/c/56d5c0557e53c4d8d92a619fa83eaae178165e07 cve-icon cve-icon
https://git.kernel.org/stable/c/905554ebd76aeee370bfd5136ea11e0b9d75c6f1 cve-icon cve-icon
https://git.kernel.org/stable/c/9f235ccecd03c436cb1683eac16b12f119e54aa9 cve-icon cve-icon
https://git.kernel.org/stable/c/f726b3a57e00bb6249c67714c11ae8b4b31719a1 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026050653-CVE-2026-43221-a254@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-43221 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-43221 cve-icon
History

Thu, 07 May 2026 04:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-788

Thu, 07 May 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-909
References

Wed, 06 May 2026 17:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-788

Wed, 06 May 2026 12:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: ipmi: ipmb: initialise event handler read bytes IPMB doesn't use i2c reads, but the handler needs to set a value. Otherwise an i2c read will return an uninitialised value from the bus driver.
Title ipmi: ipmb: initialise event handler read bytes
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-06T11:28:21.579Z

Reserved: 2026-05-01T14:12:55.994Z

Link: CVE-2026-43221

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-06T12:16:41.780

Modified: 2026-05-06T13:07:51.607

Link: CVE-2026-43221

cve-icon Redhat

Severity :

Publid Date: 2026-05-06T00:00:00Z

Links: CVE-2026-43221 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-07T06:15:23Z

Weaknesses