In the Linux kernel, the following vulnerability has been resolved:

netdevsim: zero initialize struct iphdr in dummy sk_buff

Syzbot reports a KMSAN uninit-value originating from
nsim_dev_trap_skb_build, with the allocation also
being performed in the same function.

Fix this by calling skb_put_zero instead of skb_put to
guarantee zero initialization of the whole IP header.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Linux Linux unaffected
Version Status Constraints
da58f90f11f597520f226caff1d3cfc115abedc9 affected < 175556c049eaec14efde8c6475e763b7579b9de7
da58f90f11f597520f226caff1d3cfc115abedc9 affected < 6e2cfd0904976e701d7a76b86b694e72af230ab0
da58f90f11f597520f226caff1d3cfc115abedc9 affected < 1b7b6ae0e93b8d512e208b1378d74af052e4f4e7
da58f90f11f597520f226caff1d3cfc115abedc9 affected < 818f7673ed7f4a29d4b9cee8184c47d6e57162b4
da58f90f11f597520f226caff1d3cfc115abedc9 affected < 978ca6ff789f1f19c03288ac20cc1f4774e88490
da58f90f11f597520f226caff1d3cfc115abedc9 affected < 750d0091bebf44975421268d37484ef87060d263
da58f90f11f597520f226caff1d3cfc115abedc9 affected < bc6002865e8c4fcf9e94975f7cf023448d8764e2
da58f90f11f597520f226caff1d3cfc115abedc9 affected < 35eaa6d8d6c2ee65e96f507add856e0eacf24591
Linux Linux affected
Version Status Constraints
5.4 affected
0 unaffected < 5.4
5.10.258 unaffected ≤ 5.10.*
5.15.209 unaffected ≤ 5.15.*
6.1.175 unaffected ≤ 6.1.*
6.6.141 unaffected ≤ 6.6.*
6.12.91 unaffected ≤ 6.12.*
6.18.33 unaffected ≤ 6.18.*
7.0.10 unaffected ≤ 7.0.*
7.1 unaffected ≤ *

No data.

No data.

No data.

Project Subscriptions

Vendors Products
Linux Subscribe
Linux Kernel Subscribe
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://git.kernel.org/stable/c/175556c049eaec14efde8c6475e763b7579b9de7 cve-icon
https://git.kernel.org/stable/c/1b7b6ae0e93b8d512e208b1378d74af052e4f4e7 cve-icon
https://git.kernel.org/stable/c/35eaa6d8d6c2ee65e96f507add856e0eacf24591 cve-icon
https://git.kernel.org/stable/c/6e2cfd0904976e701d7a76b86b694e72af230ab0 cve-icon
https://git.kernel.org/stable/c/750d0091bebf44975421268d37484ef87060d263 cve-icon
https://git.kernel.org/stable/c/818f7673ed7f4a29d4b9cee8184c47d6e57162b4 cve-icon
https://git.kernel.org/stable/c/978ca6ff789f1f19c03288ac20cc1f4774e88490 cve-icon
https://git.kernel.org/stable/c/bc6002865e8c4fcf9e94975f7cf023448d8764e2 cve-icon
History

Wed, 24 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: netdevsim: zero initialize struct iphdr in dummy sk_buff Syzbot reports a KMSAN uninit-value originating from nsim_dev_trap_skb_build, with the allocation also being performed in the same function. Fix this by calling skb_put_zero instead of skb_put to guarantee zero initialization of the whole IP header.
Title netdevsim: zero initialize struct iphdr in dummy sk_buff
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-06-24T16:28:59.871Z

Reserved: 2026-06-09T07:44:35.376Z

Link: CVE-2026-52985

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses

No weakness.