5.5

CVE-2026-31740

EPSS 0.01%
Veröffentlicht 01.05.2026 14:14:36
Zuletzt bearbeitet 07.05.2026 19:56:03
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

counter: rz-mtu3-cnt: do not use struct rz_mtu3_channel's dev member

In the Linux kernel, the following vulnerability has been resolved:

counter: rz-mtu3-cnt: do not use struct rz_mtu3_channel's dev member

The counter driver can use HW channels 1 and 2, while the PWM driver can
use HW channels 0, 1, 2, 3, 4, 6, 7.

The dev member is assigned both by the counter driver and the PWM driver
for channels 1 and 2, to their own struct device instance, overwriting
the previous value.

The sub-drivers race to assign their own struct device pointer to the
same struct rz_mtu3_channel's dev member.

The dev member of struct rz_mtu3_channel is used by the counter
sub-driver for runtime PM.

Depending on the probe order of the counter and PWM sub-drivers, the
dev member may point to the wrong struct device instance, causing the
counter sub-driver to do runtime PM actions on the wrong device.

To fix this, use the parent pointer of the counter, which is assigned
during probe to the correct struct device, not the struct device pointer
inside the shared struct rz_mtu3_channel.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 8

NVD 10 VulnDex Vulnerability Enrichment 12

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 6.4 < 6.6.134

Linux ≫ Linux Kernel Version >= 6.7 < 6.12.81

Linux ≫ Linux Kernel Version >= 6.13 < 6.18.22

Linux ≫ Linux Kernel Version >= 6.19 < 6.19.12

Linux ≫ Linux Kernel Version7.0 Updaterc1

Linux ≫ Linux Kernel Version7.0 Updaterc2

Linux ≫ Linux Kernel Version7.0 Updaterc3

Linux ≫ Linux Kernel Version7.0 Updaterc4

Linux ≫ Linux Kernel Version7.0 Updaterc5

Linux ≫ Linux Kernel Version7.0 Updaterc6

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.01%	0.022

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/28a371be901ef44ee03726c2575d7d6795521fe0

Patch

https://git.kernel.org/stable/c/633dfbf0eb2766c597c1a59dd83035c82e14791d

Patch

https://git.kernel.org/stable/c/6562290225c197e2e193a53de2a517815288dcd1

Patch

https://git.kernel.org/stable/c/63be324c795262f0e316c6fe9b329d83afa1ec93

Patch

https://git.kernel.org/stable/c/2932095c114b98cbb40ccf34fc00d613cb17cead

Patch

https://nvd.nist.gov/vuln/detail/CVE-2026-31740

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-31740

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-31740

EUVD