7.8

CVE-2026-23387

pinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe()

In the Linux kernel, the following vulnerability has been resolved:

pinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe()

devm_add_action_or_reset() already invokes the action on failure,
so the explicit put causes a double-put.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 6.6.118 < 6.6.130
LinuxLinux Kernel Version >= 6.12.60 < 6.12.77
LinuxLinux Kernel Version >= 6.17.10 < 6.18
LinuxLinux Kernel Version >= 6.18.1 < 6.18.17
LinuxLinux Kernel Version >= 6.19 < 6.19.7
LinuxLinux Kernel Version6.18 Update-
LinuxLinux Kernel Version7.0 Updaterc1
LinuxLinux Kernel Version7.0 Updaterc2
LinuxLinux Kernel Version7.0 Updaterc3
LinuxLinux Kernel Version7.0 Updaterc4
LinuxLinux Kernel Version7.0 Updaterc5
LinuxLinux Kernel Version7.0 Updaterc6
LinuxLinux Kernel Version7.0 Updaterc7
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.12% 0.023
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-415 Double Free

The product calls free() twice on the same memory address.

https://git.kernel.org/stable/c/95b14ecc56881dd9a187e1e84dd0daa88ff22c5d
Patch
https://git.kernel.org/stable/c/188ba3468cb7c098c62609d82e9fc58d29ead7f4
Patch
https://git.kernel.org/stable/c/ea07fcfbba4301839db3784f09955d9fa3e98090
Patch
https://git.kernel.org/stable/c/1e0465139fd9caee7ffefe285ef7d5f21919e474
Patch
https://git.kernel.org/stable/c/fd5bed798f45eb3a178ad527b43ab92705faaf8a
Patch