CVE-2026-43332

HIGH EPSS 2.9%
Published May 8, 20261mo ago · Modified Jun 17, 20262w ago
7.8 CVSS 3.1
High
Find Similar
Published May 8, 2026 1mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix thermal zone device registration error path If thermal_zone_device_register_with_trips() fails after registering a thermal zone device, it needs to wait for the tz->removal completion like thermal_zone_device_unregister(), in case user space has managed to take a reference to the thermal zone device's kobject, in which case thermal_release() may not be called by the error path itself and tz may be freed prematurely. Add the missing wait_for_completion() call to the thermal zone device registration error path.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
2.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 11

VendorProductVersionRange
linuxlinux_kernel*≥6.6.14  –  <6.6.134
linuxlinux_kernel*≥6.8  –  <6.12.81
linuxlinux_kernel*≥6.13  –  <6.18.22
linuxlinux_kernel*≥6.19  –  <6.19.12
linuxlinux_kernel6.7.2any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any
linuxlinux_kernel7.0any

References 5

  • git.kernel.org https://git.kernel.org/stable/c/4d390f0e507dfb16d58f83a58d78d1150dc8b9d7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/604da9c04c218362e1c1457304ebeb9c199d537c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9e07e3b81807edd356e1f794cffa00a428eff443
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9e796001af97a1f7368d5114b7a8533dd98d797a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c4c7219e93319bba9ba0765dee597784c78f63c5
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/4d390f0e507dfb16d58f83a58d78d1150dc8b9d7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/604da9c04c218362e1c1457304ebeb9c199d537c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9e07e3b81807edd356e1f794cffa00a428eff443
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9e796001af97a1f7368d5114b7a8533dd98d797a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c4c7219e93319bba9ba0765dee597784c78f63c5
    Patch