CVE-2026-46097

NONE EPSS 2.5%
Published May 27, 20261mo ago · Modified Jun 17, 20262w ago
Find Similar
Published May 27, 2026 1mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: Input: edt-ft5x06 - fix use-after-free in debugfs teardown The commit 68743c500c6e ("Input: edt-ft5x06 - use per-client debugfs directory") removed the manual debugfs teardown, relying on the I2C core to handle it. However, this creates a window where debugfs files are still accessible after edt_ft5x06_ts_teardown_debugfs() frees tsdata->raw_buffer. To prevent a use-after-free, protect the freeing of raw_buffer with the device mutex and set raw_buffer to NULL. The debugfs read function already checks if raw_buffer is NULL under the same mutex, so this safely avoids the use-after-free.

Threat Intelligence

EPSS Exploit Probability
2.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 3

  • git.kernel.org https://git.kernel.org/stable/c/9f6c5e7b747d40e1c65cbfcb975857d25154c075
  • git.kernel.org https://git.kernel.org/stable/c/a516d43886623e3cca5fa3446bed8fc7c7982be2
  • git.kernel.org https://git.kernel.org/stable/c/f5f9e07060519e2287e99019a6de1eb3ebb65c37

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.