CVE-2026-46021

MEDIUM EPSS 2.1%
Published May 27, 20261mo ago · Modified Jun 19, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 27, 2026 1mo ago
Last Modified Jun 19, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix thermal zone governor cleanup issues If thermal_zone_device_register_with_trips() fails after adding a thermal governor to the thermal zone being registered, the governor is not removed from it as appropriate which may lead to a memory leak. In turn, thermal_zone_device_unregister() calls thermal_set_governor() without acquiring the thermal zone lock beforehand which may race with a governor update via sysfs and may lead to a use-after-free in that case. Address these issues by adding two thermal_set_governor() calls, one to thermal_release() to remove the governor from the given thermal zone, and one to the thermal zone registration error path to cover failures preceding the thermal zone device registration.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 4

VendorProductVersionRange
linuxlinux_kernel*≥4.2  –  <6.6.140
linuxlinux_kernel*≥6.7  –  <6.12.86
linuxlinux_kernel*≥6.13  –  <6.18.27
linuxlinux_kernel*≥6.19  –  <7.0.4

References 8

  • git.kernel.org https://git.kernel.org/stable/c/37a430a2d4e66ec8238da6c7f7e48809bf265e13
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/41ff66baf81c6541f4f985dd7eac4494d03d9440
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/64d4ebf91d082034bbc5ae3ba2d7fd800bc02d06
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/75f8f3c3e09122270986de9d7aa347d701676761
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/8e563d8db50f303171aceb79eec0807e7ba06951
  • git.kernel.org https://git.kernel.org/stable/c/a172fa18bc370b776ac1510abb0dcb50a7a35fac
  • git.kernel.org https://git.kernel.org/stable/c/d4eb861adde5ce22e459fbd29366f47bb2167977
  • git.kernel.org https://git.kernel.org/stable/c/f412e541d25a3dfaf3d53e012ade6ff03cae8a45
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/37a430a2d4e66ec8238da6c7f7e48809bf265e13
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/41ff66baf81c6541f4f985dd7eac4494d03d9440
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/64d4ebf91d082034bbc5ae3ba2d7fd800bc02d06
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/75f8f3c3e09122270986de9d7aa347d701676761
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f412e541d25a3dfaf3d53e012ade6ff03cae8a45
    Patch