7.8
CVE-2026-23387
- EPSS 0.12%
- Veröffentlicht 25.03.2026 10:28:05
- Zuletzt bearbeitet 24.04.2026 18:45:08
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
pinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe()
In the Linux kernel, the following vulnerability has been resolved: pinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe() devm_add_action_or_reset() already invokes the action on failure, so the explicit put causes a double-put.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.6.118 < 6.6.130
Linux ≫ Linux Kernel Version >= 6.12.60 < 6.12.77
Linux ≫ Linux Kernel Version >= 6.17.10 < 6.18
Linux ≫ Linux Kernel Version >= 6.18.1 < 6.18.17
Linux ≫ Linux Kernel Version >= 6.19 < 6.19.7
Linux ≫ Linux Kernel Version6.18 Update-
Linux ≫ Linux Kernel Version7.0 Updaterc1
Linux ≫ Linux Kernel Version7.0 Updaterc2
Linux ≫ Linux Kernel Version7.0 Updaterc3
Linux ≫ Linux Kernel Version7.0 Updaterc4
Linux ≫ Linux Kernel Version7.0 Updaterc5
Linux ≫ Linux Kernel Version7.0 Updaterc6
Linux ≫ Linux Kernel Version7.0 Updaterc7
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.12% | 0.023 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-415 Double Free
The product calls free() twice on the same memory address.
https://git.kernel.org/stable/c/95b14ecc56881dd9a187e1e84dd0daa88ff22c5d
https://git.kernel.org/stable/c/188ba3468cb7c098c62609d82e9fc58d29ead7f4
https://git.kernel.org/stable/c/ea07fcfbba4301839db3784f09955d9fa3e98090
https://git.kernel.org/stable/c/1e0465139fd9caee7ffefe285ef7d5f21919e474
https://git.kernel.org/stable/c/fd5bed798f45eb3a178ad527b43ab92705faaf8a