ГлавнаяУязвимости → CVE-2026-53156
7.8высокая

CVE-2026-53156

Описание

In the Linux kernel, the following vulnerability has been resolved: nvmem: core: fix use-after-free bugs in error paths Fix several instances of error paths in which we call __nvmem_device_put() - which may end up freeing the underlying memory and other resources - and then keep on using the nvmem structure. Always put the reference to the nvmem device as the last step before returning the error code.

Затрагиваемое ПО
Linux Linux kernel
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://git.kernel.org/stable/c/40e2a459c0dd1333b2343831480a0ad80dc07614https://git.kernel.org/stable/c/5b6b6fc491899d583eaa75344e094796ae9b530bhttps://git.kernel.org/stable/c/cb85ef5a227b3662b88f4d849a1aad43bfe7f5aehttps://git.kernel.org/stable/c/e0d38bf47a72da2f02c9fa6f752cd66d977cd7f7