GHSA-gv6p-37ww-qhq7MediumCVSS 5.5

In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix NULL-deref...

Published
April 24, 2026
Last Modified
July 14, 2026

🔗 CVE IDs covered (1)

📋 Description

In the Linux kernel, the following vulnerability has been resolved:

mmc: vub300: fix NULL-deref on disconnect

Make sure to deregister the controller before dropping the reference to the driver data on disconnect to avoid NULL-pointer dereferences or use-after-free.

🔗 References (12)