CVE-2026-46225

MEDIUM EPSS 2.0%

Published May 28, 20261mo ago · Modified Jun 17, 20261w ago

5.5 CVSS 3.1

Medium

Published May 28, 2026 1mo ago

Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: spi: rspi: fix controller deregistration Make sure to deregister the controller before releasing underlying resources like DMA during driver unbind.

CVSS Details

Base Score

5.5

Exploitability

1.8

Impact

3.6

Vector string

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector Local

Attack Complexity Low

Privileges Required Low

User Interaction None

Scope Unchanged

Confidentiality None

Integrity None

Availability High

Threat Intelligence

EPSS Exploit Probability

2.0% percentile

Exploit & Patch Status

No Known Exploit

Patch Available

Affected Products 4

Vendor	Product	Version	Range
linux	linux_kernel	*	≥3.14 – <6.6.140
linux	linux_kernel	*	≥6.7 – <6.12.90
linux	linux_kernel	*	≥6.13 – <6.18.32
linux	linux_kernel	*	≥6.19 – <7.0.9

References 5

git.kernel.org https://git.kernel.org/stable/c/77defd64b405b680db73d767313fce770d368368

Patch
git.kernel.org https://git.kernel.org/stable/c/9944fa6726afb1e6eb7e2212764e7da0c97f2dcc

Patch
git.kernel.org https://git.kernel.org/stable/c/aee76c1dd189562c6678313caec12761f78a9ef3

Patch
git.kernel.org https://git.kernel.org/stable/c/c5090db1b31de3ef4db0cda7e822ab49cb572292

Patch
git.kernel.org https://git.kernel.org/stable/c/fee6abd9845c3edd217b0e429d09f764f9a5690e

Patch

Remediation

git.kernel.org https://git.kernel.org/stable/c/77defd64b405b680db73d767313fce770d368368

Patch
git.kernel.org https://git.kernel.org/stable/c/9944fa6726afb1e6eb7e2212764e7da0c97f2dcc

Patch
git.kernel.org https://git.kernel.org/stable/c/aee76c1dd189562c6678313caec12761f78a9ef3

Patch
git.kernel.org https://git.kernel.org/stable/c/c5090db1b31de3ef4db0cda7e822ab49cb572292

Patch
git.kernel.org https://git.kernel.org/stable/c/fee6abd9845c3edd217b0e429d09f764f9a5690e

Patch