CVE-2026-43008
GPIO Error Handling Flaw in Linux Kernel GPIO Qixis FPGA
Publication date: 2026-05-01
Last updated on: 2026-05-01
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the Linux kernel's gpio: qixis-fpga driver where error handling for the function devm_regmap_init_mmio() was incorrect.
The function devm_regmap_init_mmio() returns an ERR_PTR() on failure, not NULL as the original code assumed.
Because the code checked for NULL instead of using IS_ERR() and PTR_ERR() macros to detect errors, it could fail to recognize an error condition.
This improper error handling could lead to dereferencing an invalid pointer, causing potential crashes or undefined behavior.
How can this vulnerability impact me? :
If exploited or triggered, this vulnerability could cause the Linux kernel to dereference invalid pointers.
This may lead to system instability, crashes, or denial of service conditions.
Such impacts could affect the reliability and availability of systems running the vulnerable kernel code.
What immediate steps should I take to mitigate this vulnerability?
The vulnerability is related to improper error handling in the Linux kernel gpio qixis-fpga driver. To mitigate this vulnerability, you should update your Linux kernel to a version where this issue is fixed, as the fix involves correcting the error handling code to properly check for ERR_PTR() instead of NULL.