CVE Catalog

CVE-2026-45989

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.20%

10th percentile - higher than 10% of all known CVEs

Summary

A vulnerability has been identified in the Linux kernel within the testdrv_probe() function, leading to a use-after-free error. The issue arises from an incorrect release of the 'dn' pointer, which may result in the use of a freed object.

Risk Assessment

Organizations may be exposed to attacks that exploit this vulnerability for unauthorized memory access, potentially leading to system instability or privilege escalation.

Recommendation

It is recommended to update the Linux kernel to a version where this vulnerability has been fixed to prevent potential attacks exploiting this flaw.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: of: unittest: fix use-after-free in testdrv_probe() The function testdrv_probe() retrieves the device_node from the PCI device, applies an overlay, and then immediately calls of_node_put(dn). This releases the reference held by the PCI core, potentially freeing the node if the reference count drops to zero. Later, the same freed pointer 'dn' is passed to of_platform_default_populate(), leading to a use-after-free. The reference to pdev->dev.of_node is owned by the device model and should not be released by the driver. Remove the erroneous of_node_put() to prevent premature freeing.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS