CVE-2026-45883
MediumCVSS 5.5Exploitation Probability (EPSS)
Low risk5th percentile - higher than 5% of all known CVEs
Summary
In the Linux kernel, a resource leak was found in the SCA3000 IIO driver. The sca3000_probe() function does not release the IRQ (spi->irq) registered via request_threaded_irq() when iio_device_register() fails.
Risk Assessment
Failure to release the IRQ can exhaust available IRQ numbers in the system, preventing other devices from using interrupts and potentially causing system instability.
Recommendation
Apply the Linux kernel patch that adds a return value check for iio_device_register() and jumps to a common error handler that releases the IRQ on failure.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: iio: sca3000: Fix a resource leak in sca3000_probe() spi->irq from request_threaded_irq() not released when iio_device_register() fails. Add an return value check and jump to a common error handler when iio_device_register() fails.

