CVE Catalog

CVE-2026-46083

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.17%

7th percentile - higher than 7% of all known CVEs

Summary

A vulnerability related to resource leaks during SPI device setup failure has been fixed in the Linux kernel. It is important to call the controller cleanup() if spi_setup() fails.

Risk Assessment

Improper resource management may lead to memory leaks, potentially affecting system stability over time. Organizations should be aware of possible performance and availability issues.

Recommendation

It is recommended to update the Linux kernel to the latest version to mitigate this vulnerability and ensure proper resource management in case of SPI device setup errors.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: spi: fix resource leaks on device setup failure Make sure to call controller cleanup() if spi_setup() fails while registering a device to avoid leaking any resources allocated by setup().

Vulnerability data from NVD (NIST) · CISA KEV · EPSS