gpio: cdev: Avoid NULL dereference in linehandle_create()
CVE-2026-46258

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
3 June 2026

What is CVE-2026-46258?

In the Linux kernel, the following vulnerability has been resolved:

gpio: cdev: Avoid NULL dereference in linehandle_create()

In linehandle_create(), there is a statement like this: retain_and_null_ptr(lh);

Soon after, there is a debug printout that dereferences "lh", which will crash things.

Avoid the crash by using handlereq.lines, which is the same value.

Affected Version(s)

Linux da7e394bf58f94e9783379fef7c7fb4411b03208 < 87b9d7a4cfbed5f42af440372026270af997c766

Linux da7e394bf58f94e9783379fef7c7fb4411b03208 < 6af6be278e3ba2ffb6af5b796c89dfb3f5d9063e

Linux 6.19

References

https://git.kernel.org/stable/c/87b9d7a4cfbed5f42af440372...
https://git.kernel.org/stable/c/6af6be278e3ba2ffb6af5b796...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.