Double-Free Vulnerability in Linux Kernel Affecting Rockchip SFC Driver
CVE-2026-43460

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 8 May 2026

What is CVE-2026-43460?

A vulnerability exists in the Rockchip SFC driver within the Linux kernel that can lead to a double-free condition during the device removal process. Specifically, the use of devm_spi_register_controller() for controller registration automatically manages the unregistration upon device removal. However, a simultaneous manual call to spi_unregister_controller() in the remove() callback results in potential memory management issues. The resolution involves switching to spi_register_controller() during the probe phase, ensuring proper controller handling and avoiding double-free vulnerabilities.

Affected Version(s)

Linux 8011709906d0d6ff1ba9589de5a906bf6e430782

Linux 8011709906d0d6ff1ba9589de5a906bf6e430782 < 85fb53351e6a3b921357a2178671e847a087e400

Linux 8011709906d0d6ff1ba9589de5a906bf6e430782 < 111e2863372c322e836e0c896f6dd9cf4ee08c71

References

https://git.kernel.org/stable/c/b6051f2bdd4bd3dde85b68558...

https://git.kernel.org/stable/c/85fb53351e6a3b921357a2178...

https://git.kernel.org/stable/c/111e2863372c322e836e0c896...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 8, 2026
Vulnerability Reserved
May 1, 2026

CVE-2026-43460 Data

JSON