Linux Kernel Vulnerability in Pin Control Configuration by The Linux Foundation
CVE-2026-53307

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 26 June 2026

What is CVE-2026-53307?

The Linux kernel has been identified with a vulnerability in the pin control configuration, specifically regarding the ‘pinmux’ property. The pinconf_generic_parse_dt_pinmux() function does not adequately verify the presence and length of the ‘pinmux’ property when it is defined. This oversight may result in an attempt to access invalid memory during execution, leading to potential crashes. The fix addresses this issue by ensuring comprehensive validation of the ‘pinmux’ value when parsing device tree configurations.

Affected Version(s)

Linux 7112c05fff83e15726dd60a10248b76474e3cdf9 < 6476aac13805721e16439bd71f0e1703a4154517

Linux 7112c05fff83e15726dd60a10248b76474e3cdf9

References

https://git.kernel.org/stable/c/6476aac13805721e16439bd71...

https://git.kernel.org/stable/c/b7842b722169359e7ffe4b838...

https://git.kernel.org/stable/c/c98324ea7849b6e5baa1774f7...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-53307 Data

JSON