CVE-2026-43460

UNKNOWN 0.0

spi: rockchip-sfc: Fix double-free in remove() callback

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: spi: rockchip-sfc: Fix double-free in remove() callback The driver uses devm_spi_register_controller() for registration, which automatically unregisters the controller via devm cleanup when the device is removed. The manual call to spi_unregister_controller() in the remove() callback can lead to a double-free. And to make sure controller is unregistered before DMA buffer is unmapped, switch to use spi_register_controller() in probe().

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	May 8, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

8011709906d0d6ff1ba9589de5a906bf6e430782 < b6051f2bdd4bd3dde85b68558edd3a6843489221 8011709906d0d6ff1ba9589de5a906bf6e430782 < 85fb53351e6a3b921357a2178671e847a087e400 8011709906d0d6ff1ba9589de5a906bf6e430782 < 111e2863372c322e836e0c896f6dd9cf4ee08c71

Linux / Linux

6.14

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/b6051f2bdd4bd3dde85b68558edd3a6843489221 git.kernel.org: https://git.kernel.org/stable/c/85fb53351e6a3b921357a2178671e847a087e400 git.kernel.org: https://git.kernel.org/stable/c/111e2863372c322e836e0c896f6dd9cf4ee08c71