2439855 – (CVE-2026-23131) CVE-2026-23131 kernel: platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names

Bug 2439855 (CVE-2026-23131) - CVE-2026-23131 kernel: platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names

Summary: CVE-2026-23131 kernel: platform/x86: hp-bioscfg: Fix kobject warnings for emp...

Keywords:
Status:	NEW
Alias:	CVE-2026-23131
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2026-02-14 16:01 UTC by OSIDB Bzimport
Modified:	2026-02-16 21:14 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-02-14 16:01:55 UTC

In the Linux kernel, the following vulnerability has been resolved:

platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names

The hp-bioscfg driver attempts to register kobjects with empty names when
the HP BIOS returns attributes with empty name strings. This causes
multiple kernel warnings:

  kobject: (00000000135fb5e6): attempted to be registered with empty name!
  WARNING: CPU: 14 PID: 3336 at lib/kobject.c:219 kobject_add_internal+0x2eb/0x310

Add validation in hp_init_bios_buffer_attribute() to check if the
attribute name is empty after parsing it from the WMI buffer. If empty,
log a debug message and skip registration of that attribute, allowing the
module to continue processing other valid attributes.

Comment 1 Alexander B 2026-02-16 09:55:22 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2026021411-CVE-2026-23131-6201@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.