CVE-2026-53156 | In the Linux kernel, the following vulnerability has been re…

Description

In the Linux kernel, the following vulnerability has been resolved: nvmem: core: fix use-after-free bugs in error paths Fix several instances of error paths in which we call __nvmem_device_put() - which may end up freeing the underlying memory and other resources - and then keep on using the nvmem structure. Always put the reference to the nvmem device as the last step before returning the error code.

Metadata

CVE ID: CVE-2026-53156
State: PUBLISHED
Assigner: Linux
Reserved: 2026-06-09 07:44 UTC
Published: 2026-06-25 08:38 UTC
Last updated: 2026-06-25 08:38 UTC
Vendor / Product: Linux / Linux
Sources: cve.org · NVD

Severity & Metrics

No CVSS data available.

Affected products (2)

Vendor	Product	Platform	Versions
Linux	Linux	—	e888d445ac33a5b0288d670ecd970908b13f07cd < e0d38bf47a72da2f02c9fa6f752cd66d977cd7f7, e888d445ac33a5b0288d670ecd970908b13f07cd < cb85ef5a227b3662b88f4d849a1aad43bfe7f5ae, e888d445ac33a5b0288d670ecd970908b13f07cd < 40e2a459c0dd1333b2343831480a0ad80dc07614, e888d445ac33a5b0288d670ecd970908b13f07cd < 5b6b6fc491899d583eaa75344e094796ae9b530b
Linux	Linux	—	4.20, 0 < 4.20, 6.12.94 ≤ 6.12., 6.18.36 ≤ 6.18. …

References (4)