CVE-2026-46177

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> ipmi: Add limits to event and receive message requests<br /> <br /> The driver would just fetch events and receive messages until the<br /> BMC said it was done. To avoid issues with BMCs that never say they are<br /> done, add a limit of 10 fetches at a time.<br /> <br /> In addition, an si interface has an attn state it can return from the<br /> hardware which is supposed to cause a flag fetch to see if the driver<br /> needs to fetch events or message or a few other things. If the attn<br /> bit gets stuck, it&amp;#39;s a similar problem. So allow messages in between<br /> flag fetches so the driver itself doesn&amp;#39;t get stuck.<br /> <br /> This is a more general fix than the previous fix for the specific bad<br /> BMC, but should fix the more general issue of a BMC that won&amp;#39;t stop<br /> saying it has data.<br /> <br /> This has been there from the beginning of the driver. It&amp;#39;s not a bug<br /> per-se, but it is accounting for bugs in BMCs.