CVE-2026-46161

Source
https://cve.org/CVERecord?id=CVE-2026-46161
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46161.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-46161
Downstream
Related
Published
2026-05-28T09:36:16.428Z
Modified
2026-07-08T08:13:39.566578952Z
Summary
md/raid10: fix divide-by-zero in setup_geo() with zero far_copies
Details

In the Linux kernel, the following vulnerability has been resolved:

md/raid10: fix divide-by-zero in setupgeo() with zero farcopies

setupgeo() extracts nearcopies (nc) and farcopies (fc) from the user-provided layout parameter without checking for zero. When fc=0 with the "improved" far set layout selected, 'geo->farset_size = disks / fc' triggers a divide-by-zero.

Validate nc and fc immediately after extraction, returning -1 if either is zero.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46161.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
475901aff15841fb0a81e7546517407779a9b061
Fixed
0b43a70394ce492274e67463326be03e0a9897c5
Fixed
c716ab3034f84f8a6c226814247b8c5ac9f95da1
Fixed
553e32adfa1a96b217651139a3f8c3b92b9984ac
Fixed
4af2e558e6fdfb972c61350653fd55d1f62b60a5
Fixed
9d8e03b9a2b1e8ce5c198bf3a409a629f4d02cda
Fixed
913d556e4bd1b56ed822815655b82c7bb54edc51
Fixed
f9ddb621b2325eb69c95692958daf2bab4dea2c4
Fixed
9aa6d860b0930e2f72795665c42c44252a558a0c

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46161.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
3.9.0
Fixed
5.10.258
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.209
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.175
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.140
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.88
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.30
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.7

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46161.json"