CVE-2026-43160

MEDIUM

mfd: macsmc: Initialize mutex

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: mfd: macsmc: Initialize mutex Initialize struct apple_smc's mutex in apple_smc_probe(). Using the mutex uninitialized surprisingly resulted only in occasional NULL pointer dereferences in apple_smc_read() calls from the probe() functions of sub devices.

References (3)

Core 3

Core References

https://git.kernel.org/stable/c/a1e9e299c0d9ea42ab1067b39fb72e976d3f1bdb

https://git.kernel.org/stable/c/2d5932588f029f7787f52c29174fead9bbc6b2cf

https://git.kernel.org/stable/c/414f65d6736342c77d4ec5e7373039f4a09250dd

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-908

Status published

Products (9)

Linux/Linux < 6.17

Linux/Linux 6.17

Linux/Linux 6.18.16 - 6.18.*

Linux/Linux 6.19.6 - 6.19.*

Linux/Linux 7.0

Linux/Linux e038d985c9823a12cd64fa077d0c5aca2c644b67 - 2d5932588f029f7787f52c29174fead9bbc6b2cf

Linux/Linux e038d985c9823a12cd64fa077d0c5aca2c644b67 - 414f65d6736342c77d4ec5e7373039f4a09250dd

Linux/Linux e038d985c9823a12cd64fa077d0c5aca2c644b67 - a1e9e299c0d9ea42ab1067b39fb72e976d3f1bdb

linux/linux_kernel 6.17 - 6.18.16

Published May 06, 2026

Tracked Since May 06, 2026