GHSA-2wqp-vx6w-rvfxHighCVSS 7.8

In the Linux kernel, the following vulnerability has been resolved: nvmem: core: fix use-after...

Published
June 25, 2026
Last Modified
July 6, 2026

🔗 CVE IDs covered (1)

📋 Description

In the Linux kernel, the following vulnerability has been resolved:

nvmem: core: fix use-after-free bugs in error paths

Fix several instances of error paths in which we call __nvmem_device_put() - which may end up freeing the underlying memory and other resources - and then keep on using the nvmem structure. Always put the reference to the nvmem device as the last step before returning the error code.

🔗 References (6)