CVE-2026-45989
HighCVSS 7.8Exploitation Probability (EPSS)
Low risk10th percentile - higher than 10% of all known CVEs
Summary
A vulnerability has been identified in the Linux kernel within the testdrv_probe() function, leading to a use-after-free error. The issue arises from an incorrect release of the 'dn' pointer, which may result in the use of a freed object.
Risk Assessment
Organizations may be exposed to attacks that exploit this vulnerability for unauthorized memory access, potentially leading to system instability or privilege escalation.
Recommendation
It is recommended to update the Linux kernel to a version where this vulnerability has been fixed to prevent potential attacks exploiting this flaw.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: of: unittest: fix use-after-free in testdrv_probe() The function testdrv_probe() retrieves the device_node from the PCI device, applies an overlay, and then immediately calls of_node_put(dn). This releases the reference held by the PCI core, potentially freeing the node if the reference count drops to zero. Later, the same freed pointer 'dn' is passed to of_platform_default_populate(), leading to a use-after-free. The reference to pdev->dev.of_node is owned by the device model and should not be released by the driver. Remove the erroneous of_node_put() to prevent premature freeing.

