spi: mpc52xx: fix use-after-free on unbind

MITRE NVD CVE.ORG JSON API Print: PDF PDF

Summary

CVECVE-2026-46219
StatePUBLISHED
AssignerLinux
Source PriorityCVE Program / NVD first with legacy fallback
Published2026-05-28 10:16:37 UTC
Updated2026-05-28 13:44:01 UTC
DescriptionIn the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: fix use-after-free on unbind The state machine work is scheduled by the interrupt handler and therefore needs to be cancelled after disabling interrupts to avoid a potential use-after-free.

Vendor Declared Affected Products

SourceVendorProductVersionPlatforms
CNA Linux Linux affected f65d85bc1ffd8a2c194bb2cd65e35ed3648ddd59 bb6b50f709c5a01906ff72a07fdc070bb3357188 git Not specified
CNA Linux Linux affected 90b72189de2cddacb26250579da0510b29a8b82b ee52da0dd83ebcd89ecbbe2660c57b15a25489f2 git Not specified
CNA Linux Linux affected 984836621aad98802d92c4a3047114cf518074c8 6c3e413919a12627d04a31a4a5fccb9fc129bb02 git Not specified
CNA Linux Linux affected 984836621aad98802d92c4a3047114cf518074c8 bbcd6dd8e9f264440eaf6167382bf404911c1c46 git Not specified
CNA Linux Linux affected 984836621aad98802d92c4a3047114cf518074c8 706b3dc2ac7a998c55e14b3fd2e8f934c367e6e0 git Not specified
CNA Linux Linux affected d0cde3911cf24e1bcdd4caa1d1b9ef57589db5a1 git Not specified
CNA Linux Linux affected e0c6ce8424095c2da32a063d3fc027494c689817 git Not specified
CNA Linux Linux affected cd5106c77d6d6828aa82449f01f4eb436d602a21 git Not specified
CNA Linux Linux affected 373d55a47dc662e5e30d12ad5d334312f757c1f1 git Not specified
CNA Linux Linux affected 6.6.66 6.6.140 semver Not specified
CNA Linux Linux affected 6.12.5 6.12.90 semver Not specified
CNA Linux Linux affected 5.4.287 5.5 semver Not specified
CNA Linux Linux affected 5.10.231 5.11 semver Not specified
CNA Linux Linux affected 5.15.174 5.16 semver Not specified
CNA Linux Linux affected 6.1.120 6.2 semver Not specified
CNA Linux Linux affected 6.13 Not specified
CNA Linux Linux unaffected 6.13 semver Not specified
CNA Linux Linux unaffected 6.6.140 6.6.* semver Not specified
CNA Linux Linux unaffected 6.12.90 6.12.* semver Not specified
CNA Linux Linux unaffected 6.18.32 6.18.* semver Not specified
CNA Linux Linux unaffected 7.0.9 7.0.* semver Not specified
CNA Linux Linux unaffected 7.1-rc1 * original_commit_for_fix Not specified

References

ReferenceSourceLinkTags
git.kernel.org/stable/c/bbcd6dd8e9f264440eaf6167382bf404911c1c46 416baaa9-dc9f-4396-8d5f-8c081fb06d67 git.kernel.org
git.kernel.org/stable/c/ee52da0dd83ebcd89ecbbe2660c57b15a25489f2 416baaa9-dc9f-4396-8d5f-8c081fb06d67 git.kernel.org
git.kernel.org/stable/c/706b3dc2ac7a998c55e14b3fd2e8f934c367e6e0 416baaa9-dc9f-4396-8d5f-8c081fb06d67 git.kernel.org
git.kernel.org/stable/c/6c3e413919a12627d04a31a4a5fccb9fc129bb02 416baaa9-dc9f-4396-8d5f-8c081fb06d67 git.kernel.org
git.kernel.org/stable/c/bb6b50f709c5a01906ff72a07fdc070bb3357188 416baaa9-dc9f-4396-8d5f-8c081fb06d67 git.kernel.org
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report