CVE-2026-23443

MEDIUM EPSS 2.1%
Published Apr 3, 20262mo ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Apr 3, 2026 2mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: Fix previous acpi_processor_errata_piix4() fix After commi f132e089fe89 ("ACPI: processor: Fix NULL-pointer dereference in acpi_processor_errata_piix4()"), device pointers may be dereferenced after dropping references to the device objects pointed to by them, which may cause a use-after-free to occur. Moreover, debug messages about enabling the errata may be printed if the errata flags corresponding to them are unset. Address all of these issues by moving message printing to the points in the code where the errata flags are set.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 6

VendorProductVersionRange
linuxlinux_kernel*≥6.1.165  –  <6.1.167
linuxlinux_kernel*≥6.6.128  –  <6.6.130
linuxlinux_kernel*≥6.12.75  –  <6.12.78
linuxlinux_kernel*≥6.18.16  –  <6.18.20
linuxlinux_kernel*≥6.19.6  –  <6.19.10
linuxlinux_kernel5.15.202any

References 7

  • git.kernel.org https://git.kernel.org/stable/c/2e369ba9eb7b8a06e9cc35a3e7fe73e59272f8c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/68408e8f9e366ad9850a66ac65cb569f13bf6cd4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8583f62259e1b315d5239371adfb36939cdab741
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/98473309a36acc271009b85e0bb53a4c0dddf5c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bf504b229cb8d534eccbaeaa23eba34c05131e25
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e0c470049344e9346fff79d7e2362212c216665e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/edf4c2aaee08e8fd503fbae705c801e92a0b55d7
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/2e369ba9eb7b8a06e9cc35a3e7fe73e59272f8c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/68408e8f9e366ad9850a66ac65cb569f13bf6cd4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8583f62259e1b315d5239371adfb36939cdab741
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/98473309a36acc271009b85e0bb53a4c0dddf5c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bf504b229cb8d534eccbaeaa23eba34c05131e25
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e0c470049344e9346fff79d7e2362212c216665e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/edf4c2aaee08e8fd503fbae705c801e92a0b55d7
    Patch