CVE-2026-46241

EUVD-2026-32759
In the Linux kernel, the following vulnerability has been resolved:

spi: mpc52xx: fix use-after-free on registration failure

Make sure to disable and free the interrupts in case controller
registration fails to avoid a potential use-after-free and resource
leak.

This issue was flagged by Sashiko when reviewing a controller
deregistration fix.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
UNKNOWN
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 4%
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
vulnerable
bookworm (security)
vulnerable
bullseye
vulnerable
bullseye (security)
vulnerable
forky
7.0.9-1
fixed
sid
7.0.10-1
fixed
trixie
vulnerable
trixie (security)
6.12.90-2
fixed
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/336d9ad7560b3baba17af06727a888040ee93390
https://git.kernel.org/stable/c/5c77f11b9b5f1ad5a704dad875260c44016ede10
https://git.kernel.org/stable/c/8b49b6aadd0c622ca7d68b4a53ae10362e221cf3
https://git.kernel.org/stable/c/f62c060272b9d7423b1650b844e8e4e7b8f9f925