Wind River Support Network

HomeDefectsLIN1022-21038
Acknowledged

LIN1022-21038 : Security Advisory - linux - CVE-2026-22978

Created: Jan 26, 2026    Updated: Jan 28, 2026
Found In Version: 10.22.33.2
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Kernel

Description

In the Linux kernel, the following vulnerability has been resolved:

wifi: avoid kernel-infoleak from struct iw_point

struct iw_point has a 32bit hole on 64bit arches.

struct iw_point {
  void __user   *pointer;       /* Pointer to the data  (in user space) */
  __u16         length;         /* number of fields or size in bytes */
  __u16         flags;          /* Optional params */
};

Make sure to zero the structure to avoid disclosing 32bits of kernel data
to user space.
  • Linkedin
  • Facebook
  • Twitter
  • Youtube