CVE-2026-43332
Received Received - Intake

Thermal Zone Device Registration Error in Linux Kernel

Vulnerability report for CVE-2026-43332, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-05-08

Last updated on: 2026-05-18

Assigner: kernel.org

Description

In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix thermal zone device registration error path If thermal_zone_device_register_with_trips() fails after registering a thermal zone device, it needs to wait for the tz->removal completion like thermal_zone_device_unregister(), in case user space has managed to take a reference to the thermal zone device's kobject, in which case thermal_release() may not be called by the error path itself and tz may be freed prematurely. Add the missing wait_for_completion() call to the thermal zone device registration error path.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-05-08
Last Modified
2026-05-18
Generated
2026-07-09
AI Q&A
2026-05-08
EPSS Evaluated
2026-07-08
NVD
EUVD

Affected Vendors & Products

Showing 11 associated CPEs
Vendor Product Version / Range
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel 7.0
linux linux_kernel From 6.13 (inc) to 6.18.22 (exc)
linux linux_kernel From 6.19 (inc) to 6.19.12 (exc)
linux linux_kernel From 6.6.14 (inc) to 6.6.134 (exc)
linux linux_kernel From 6.8 (inc) to 6.12.81 (exc)
linux linux_kernel 6.7.2

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is related to the Linux kernel's thermal management system. Specifically, it involves an error in the thermal zone device registration process. When the function thermal_zone_device_register_with_trips() fails after registering a thermal zone device, it does not properly wait for the removal completion. This can cause the thermal zone device's resources to be freed prematurely if user space has taken a reference to the device's kobject, potentially leading to improper cleanup and resource management.

The fix involves adding a missing wait_for_completion() call in the error path to ensure that the system waits for the removal process to complete before freeing resources.

Impact Analysis

This vulnerability can lead to premature freeing of thermal zone device resources in the Linux kernel. If user space holds references to these devices, the improper cleanup could cause system instability, crashes, or undefined behavior related to thermal management.

Such instability might affect system reliability, especially in environments where thermal management is critical for hardware safety and performance.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-43332. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart