5.5

CVE-2026-45925

thermal/of: Fix reference leak in thermal_of_cm_lookup()

In the Linux kernel, the following vulnerability has been resolved:

thermal/of: Fix reference leak in thermal_of_cm_lookup()

In thermal_of_cm_lookup(), tr_np is obtained via of_parse_phandle(), but
never released.

Use the __free(device_node) cleanup attribute to automatically release
the node and fix the leak.

[ rjw: Changelog edits ]
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 6.12.18 < 6.12.75
LinuxLinux Kernel Version >= 6.13.6 < 6.14
LinuxLinux Kernel Version >= 6.14.1 < 6.18.14
LinuxLinux Kernel Version >= 6.19 < 6.19.4
LinuxLinux Kernel Version6.14 Update-
LinuxLinux Kernel Version6.14 Updaterc5
LinuxLinux Kernel Version6.14 Updaterc6
LinuxLinux Kernel Version6.14 Updaterc7
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.16% 0.05
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/8af710156c53cdb392d529497ef2b3a10a1f9370
Patch
https://git.kernel.org/stable/c/8344d5da9df74fdbef676214d0c482fc822a01ca
Patch
https://git.kernel.org/stable/c/025796ccd7f9f2e013e12319de26b6c021a80c1f
Patch
https://git.kernel.org/stable/c/a1fe789a96fe47733c133134fd264cb7ca832395
Patch