Linux Kernel Vulnerability in Microchip's QSPI Interface
CVE-2026-46192
What is CVE-2026-46192?
A vulnerability exists in the Linux kernel's Microchip QSPI interface driver, which incorrectly attempts to transmit data during emulated read-only dual and quad operations. This flaw can lead to unreliable data transfers as the core generates clock cycles without the need for additional transmission of data at the driver level. The transmission of irrelevant data may not only disrupt the transfer process but could potentially result in the system losing synchronization, leading to errors in communication between the devices. Addressing this issue is essential for maintaining system stability and ensuring reliable operations in embedded systems.
Affected Version(s)
Linux 8f9cf02c8852837923f1cdacfcc92e138513325c
Linux 8f9cf02c8852837923f1cdacfcc92e138513325c < 67184f361ab4d9fac6d2b8d5fed6649d496038a4
Linux 8f9cf02c8852837923f1cdacfcc92e138513325c