CVE-2026-53307 | In the Linux kernel, the following vulnerability has been re…

Description

In the Linux kernel, the following vulnerability has been resolved: pinctrl: pinconf-generic: Fully validate 'pinmux' property The pinconf_generic_parse_dt_pinmux() assumes that the 'pinmux' property is not empty when present. This might be not true. With that, the allocator will give a special value in return and not NULL which lead to the crash when trying to access that (invalid) memory. Fix that by fully validating 'pinmux' value, including its length.

Metadata

CVE ID: CVE-2026-53307
State: PUBLISHED
Assigner: Linux
Reserved: 2026-06-09 07:44 UTC
Published: 2026-06-26 19:41 UTC
Last updated: 2026-06-26 19:41 UTC
Vendor / Product: Linux / Linux
Sources: cve.org · NVD

Severity & Metrics

No CVSS data available.

Affected products (2)

Vendor	Product	Platform	Versions
Linux	Linux	—	7112c05fff83e15726dd60a10248b76474e3cdf9 < 6476aac13805721e16439bd71f0e1703a4154517, 7112c05fff83e15726dd60a10248b76474e3cdf9 < b7842b722169359e7ffe4b838d2496e9e72ac996, 7112c05fff83e15726dd60a10248b76474e3cdf9 < c98324ea7849b6e5baa1774f71709b375a2c2f9e
Linux	Linux	—	6.15, 0 < 6.15, 6.18.33 ≤ 6.18., 7.0.10 ≤ 7.0. …

References (3)