CVE-2026-43332
Received Received - Intake
Thermal Zone Device Registration Error in Linux Kernel

Publication date: 2026-05-08

Last updated on: 2026-05-18

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix thermal zone device registration error path If thermal_zone_device_register_with_trips() fails after registering a thermal zone device, it needs to wait for the tz->removal completion like thermal_zone_device_unregister(), in case user space has managed to take a reference to the thermal zone device's kobject, in which case thermal_release() may not be called by the error path itself and tz may be freed prematurely. Add the missing wait_for_completion() call to the thermal zone device registration error path.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-08
Last Modified
2026-05-18
Generated
2026-06-19
AI Q&A
2026-05-08
EPSS Evaluated
2026-06-18
NVD
CVE-2026-43332
EUVD
EUVD-2026-28616
Affected Vendors & Products
Showing 11 associated CPEs
Vendor Product Version / Range
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel From 6.13 (inc) to 6.18.22 (exc)
linux linux_kernel From 6.19 (inc) to 6.19.12 (exc)
linux linux_kernel From 6.6.14 (inc) to 6.6.134 (exc)
linux linux_kernel From 6.8 (inc) to 6.12.81 (exc)
linux linux_kernel 6.7.2
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is related to the Linux kernel's thermal management system. Specifically, it involves an error in the thermal zone device registration process. When the function thermal_zone_device_register_with_trips() fails after registering a thermal zone device, it does not properly wait for the removal completion. This can cause the thermal zone device's resources to be freed prematurely if user space has taken a reference to the device's kobject, potentially leading to improper cleanup and resource management.

The fix involves adding a missing wait_for_completion() call in the error path to ensure that the system waits for the removal process to complete before freeing resources.

Impact Analysis

This vulnerability can lead to premature freeing of thermal zone device resources in the Linux kernel. If user space holds references to these devices, the improper cleanup could cause system instability, crashes, or undefined behavior related to thermal management.

Such instability might affect system reliability, especially in environments where thermal management is critical for hardware safety and performance.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-43332. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart