CVE-2026-46301

EUVD-2026-35166
In the Linux kernel, the following vulnerability has been resolved:

spi: topcliff-pch: fix use-after-free on unbind

Give the driver a chance to flush its queue before releasing the DMA
buffers on driver unbind
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
UNKNOWN
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 7%
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
vulnerable
bookworm (security)
vulnerable
bullseye
vulnerable
bullseye (security)
vulnerable
forky
7.0.10-1
fixed
sid
7.0.10-1
fixed
trixie
vulnerable
trixie (security)
6.12.90-2
fixed
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/0e8e57f9737ea257634db1d152fc430a0788a3e1
https://git.kernel.org/stable/c/36e58c436d2c2a797800427dc04d74ffd8b6ce1c
https://git.kernel.org/stable/c/43334836b907adc21eab3079d2e6b26754468786
https://git.kernel.org/stable/c/4ca90deeca1c7dd72c1c380ba8143565516def2d
https://git.kernel.org/stable/c/8822980668c96b5aa251c1e2daec1873262b8f3f
https://git.kernel.org/stable/c/9d72732fe70c11424bc90ed466c7ccfa58b42a9a
https://git.kernel.org/stable/c/d50ef3553acbacce6f2843304d41d06dca358bb6
https://git.kernel.org/stable/c/d79e92161b65832e0b8cad5f3d84d17e5cd7a970