5.5

CVE-2026-46083

spi: fix resource leaks on device setup failure

In the Linux kernel, the following vulnerability has been resolved:

spi: fix resource leaks on device setup failure

Make sure to call controller cleanup() if spi_setup() fails while
registering a device to avoid leaking any resources allocated by
setup().
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.4.126 < 5.5
LinuxLinux Kernel Version >= 5.10.44 < 5.11
LinuxLinux Kernel Version >= 5.12.11 < 5.13
LinuxLinux Kernel Version >= 5.13.1 < 6.1.176
LinuxLinux Kernel Version >= 6.2 < 6.6.140
LinuxLinux Kernel Version >= 6.7 < 6.12.86
LinuxLinux Kernel Version >= 6.13 < 6.18.27
LinuxLinux Kernel Version >= 6.19 < 7.0.4
LinuxLinux Kernel Version5.13 Update-
LinuxLinux Kernel Version5.13 Updaterc4
LinuxLinux Kernel Version5.13 Updaterc5
LinuxLinux Kernel Version5.13 Updaterc6
LinuxLinux Kernel Version5.13 Updaterc7
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.12% 0.024
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/a2c817c629430fbbd54273525b472dac96e2c8fd
Patch
https://git.kernel.org/stable/c/1e774294b2f944f59e03a04eb438768a4b93c3ce
Patch
https://git.kernel.org/stable/c/11baa8b24bcb07ae2048f2566a220021d766abe0
Patch
https://git.kernel.org/stable/c/dbcead54b12468d9aa54c0e1f0042d838ec3b0ae
Patch
https://git.kernel.org/stable/c/db357034f7e0cf23f233f414a8508312dfe8fbbe
Patch
https://git.kernel.org/stable/c/e0401de43dac00f3e4841ca2aeb98bc10a4c5f13
Patch