CVE-2026-23323
- Source
- https://cve.org/CVERecord?id=CVE-2026-23323
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23323.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2026-23323
- Downstream
- Published
- 2026-03-25T10:27:16.697Z
- Modified
- 2026-04-02T13:12:21.701150Z
- Summary
- hwmon: (macsmc) Fix regressions in Apple Silicon SMC hwmon driver
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
hwmon: (macsmc) Fix regressions in Apple Silicon SMC hwmon driver
The recently added macsmc-hwmon driver contained several critical bugs in its sensor population logic and float conversion routines.
Specifically: - The voltage sensor population loop used the wrong prefix ("volt-" instead of "voltage-") and incorrectly assigned sensors to the temperature sensor array (hwmon->temp.sensors) instead of the voltage sensor array (hwmon->volt.sensors). This would lead to out-of-bounds memory access or data corruption when both temperature and voltage sensors were present. - The float conversion in macsmchwmonwrite_f32() had flawed exponent logic for values >= 2^24 and lacked masking for the mantissa, which could lead to incorrect values being written to the SMC.
Fix these issues to ensure correct sensor registration and reliable manual fan control.
Confirm that the reported overflow in FIELDPREP is fixed by declaring macsmchwmonwritef32() as _alwaysinline for a compile test.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23323.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/5dd69b864911ae3847365e8bafe7854e79fbeecb
- https://git.kernel.org/stable/c/625ef35b70d3883fb9a41cd5a988e64dd3e447d6
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23323.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-23323