CVE-2026-46203

HIGH

spi: cadence-quadspi: fix unclocked access on unbind

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: fix unclocked access on unbind Make sure that the controller is runtime resumed before disabling it during driver unbind to avoid an unclocked register access. This issue was flagged by Sashiko when reviewing a controller deregistration fix.

References (2)

Core 2

Core References

https://git.kernel.org/stable/c/d67a5311818b3e6481a1e4293c9337ebfee73111

https://git.kernel.org/stable/c/233db2cb14db8b1935dda52a6affd97276462b82

Scores

CVSS v3 7.1

EPSS 0.0012

EPSS Percentile 2.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Details

CWE

CWE-125

Status published

Products (9)

Linux/Linux < 6.7

Linux/Linux 0578a6dbfe7514db7134501cf93acc21cf13e479 - 233db2cb14db8b1935dda52a6affd97276462b82

Linux/Linux 0578a6dbfe7514db7134501cf93acc21cf13e479 - d67a5311818b3e6481a1e4293c9337ebfee73111

Linux/Linux 6.7

Linux/Linux 7.0.9 - 7.0.*

Linux/Linux 7.1

Linux/Linux 7.1-rc2

linux/linux_kernel 7.1 rc1

linux/linux_kernel 6.7 - 7.0.9

Published May 28, 2026

Tracked Since May 28, 2026