CVE-2026-46258
MediumCVSS 5.5Exploitation Probability (EPSS)
Low risk3th percentile - higher than 3% of all known CVEs
Summary
A vulnerability has been identified in the Linux kernel that may lead to NULL pointer dereference in the linehandle_create() function. This issue has been resolved by using the value of handlereq.lines instead of dereferencing the pointer.
Risk Assessment
Exploitation of this vulnerability may lead to system crashes, potentially affecting service availability within the organization.
Recommendation
It is recommended to update the Linux kernel to the latest version to eliminate this vulnerability and prevent potential crashes.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: gpio: cdev: Avoid NULL dereference in linehandle_create() In linehandle_create(), there is a statement like this: retain_and_null_ptr(lh); Soon after, there is a debug printout that dereferences "lh", which will crash things. Avoid the crash by using handlereq.lines, which is the same value.

