In the Linux kernel, the following vulnerability has been resolved:

spi: mpc52xx: fix use-after-free on unbind

The state machine work is scheduled by the interrupt handler and
therefore needs to be cancelled after disabling interrupts to avoid a
potential use-after-free.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00018.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Linux Linux unaffected
Version Status Constraints
f65d85bc1ffd8a2c194bb2cd65e35ed3648ddd59 affected < bb6b50f709c5a01906ff72a07fdc070bb3357188
90b72189de2cddacb26250579da0510b29a8b82b affected < ee52da0dd83ebcd89ecbbe2660c57b15a25489f2
984836621aad98802d92c4a3047114cf518074c8 affected < 6c3e413919a12627d04a31a4a5fccb9fc129bb02
984836621aad98802d92c4a3047114cf518074c8 affected < bbcd6dd8e9f264440eaf6167382bf404911c1c46
984836621aad98802d92c4a3047114cf518074c8 affected < 706b3dc2ac7a998c55e14b3fd2e8f934c367e6e0
d0cde3911cf24e1bcdd4caa1d1b9ef57589db5a1 affected
e0c6ce8424095c2da32a063d3fc027494c689817 affected
cd5106c77d6d6828aa82449f01f4eb436d602a21 affected
373d55a47dc662e5e30d12ad5d334312f757c1f1 affected
6.6.66 affected < 6.6.140
6.12.5 affected < 6.12.90
5.4.287 affected < 5.5
5.10.231 affected < 5.11
5.15.174 affected < 5.16
6.1.120 affected < 6.2
Linux Linux affected
Version Status Constraints
6.13 affected
0 unaffected < 6.13
6.6.140 unaffected ≤ 6.6.*
6.12.90 unaffected ≤ 6.12.*
6.18.32 unaffected ≤ 6.18.*
7.0.9 unaffected ≤ 7.0.*
7.1-rc1 unaffected ≤ *

No data.

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors Products
Linux Subscribe
Linux Kernel Subscribe

Project Subscriptions

Vendors Products
Linux Subscribe
Linux Kernel Subscribe
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://git.kernel.org/stable/c/6c3e413919a12627d04a31a4a5fccb9fc129bb02 cve-icon cve-icon
https://git.kernel.org/stable/c/706b3dc2ac7a998c55e14b3fd2e8f934c367e6e0 cve-icon cve-icon
https://git.kernel.org/stable/c/bb6b50f709c5a01906ff72a07fdc070bb3357188 cve-icon cve-icon
https://git.kernel.org/stable/c/bbcd6dd8e9f264440eaf6167382bf404911c1c46 cve-icon cve-icon
https://git.kernel.org/stable/c/ee52da0dd83ebcd89ecbbe2660c57b15a25489f2 cve-icon cve-icon
History

Thu, 28 May 2026 13:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-416

Thu, 28 May 2026 10:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: fix use-after-free on unbind The state machine work is scheduled by the interrupt handler and therefore needs to be cancelled after disabling interrupts to avoid a potential use-after-free.
Title spi: mpc52xx: fix use-after-free on unbind
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-28T09:40:35.297Z

Reserved: 2026-05-13T15:03:33.105Z

Link: CVE-2026-46219

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-28T10:16:37.530

Modified: 2026-05-28T13:44:01.663

Link: CVE-2026-46219

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-28T15:15:19Z

Weaknesses