CVE-2026-23006

MEDIUM

Linux Kernel 6.1.0-6.1.161, 6.2.0-6.6.121, 6.7.0-6.12.66, 6.13.0-6.18.6 - NULL Pointer Dereference

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: tlv320adcx140: fix null pointer The "snd_soc_component" in "adcx140_priv" was only used once but never set. It was only used for reaching "dev" which is already present in "adcx140_priv".

References (5)

Core 5

Scores

CVSS v3 5.5
EPSS 0.0019
EPSS Percentile 8.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-476
Status published
Products (19)
linux/Kernel 6.1.0 - 6.1.162linux
linux/Kernel 6.13.0 - 6.18.7linux
linux/Kernel 6.2.0 - 6.6.122linux
linux/Kernel 6.7.0 - 6.12.67linux
Linux/Linux < 6.1
Linux/Linux 4e82971f7b556cff3491c867e8840e7d788693b9 - 53bd838ed5950cb18927e4b2e8ee841b7cb10929
Linux/Linux 4e82971f7b556cff3491c867e8840e7d788693b9 - 61757f5191daab863d25f03680e912b5449a1eed
Linux/Linux 4e82971f7b556cff3491c867e8840e7d788693b9 - 659939d08e5f7bc17b941c53e8c9c0a6c6113b21
Linux/Linux 4e82971f7b556cff3491c867e8840e7d788693b9 - 954260a32c21d5072d8e7253c0a8b1627927cb02
Linux/Linux 4e82971f7b556cff3491c867e8840e7d788693b9 - be7664c81d3129fc313ef62ff275fd3d33cfecd4
... and 9 more
Published Jan 25, 2026
Tracked Since Feb 18, 2026