CVE-2026-46219
Received
Received - Intake
spi: mpc52xx use-after-free on unbind
Publication date: 2026-05-28
Last updated on: 2026-05-28
Assigner: kernel.org
Description
Description
In the Linux kernel, the following vulnerability has been resolved:
spi: mpc52xx: fix use-after-free on unbind
The state machine work is scheduled by the interrupt handler and
therefore needs to be cancelled after disabling interrupts to avoid a
potential use-after-free.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability impact me? :
The use-after-free vulnerability can potentially lead to system instability, crashes, or exploitation by attackers to execute arbitrary code or cause denial of service by manipulating kernel memory.
Can you explain this vulnerability to me?
This vulnerability is a use-after-free issue in the Linux kernel's spi: mpc52xx driver. It occurs because the state machine work is scheduled by the interrupt handler and is not properly cancelled after disabling interrupts, which can lead to accessing memory that has already been freed.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70