CVE-2026-46310

MEDIUM

media: renesas: vsp1: Fix NULL pointer deref on module unload

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: media: renesas: vsp1: Fix NULL pointer deref on module unload When unloading the module on gen 4, we hit a NULL pointer dereference. This is caused by the cleanup code calling vsp1_drm_cleanup() where it should be calling vsp1_vspx_cleanup(). Fix this by checking the IP version and calling the drm or vspx function accordingly, the same way as the init code does.

Scores

CVSS v3 5.5
EPSS 0.0011
EPSS Percentile 1.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-476
Status published
Products (12)
linux/Kernel 6.17.0 - 6.18.32linux
linux/Kernel 6.19.0 - 7.0.9linux
Linux/Linux < 6.17
Linux/Linux 6.17
Linux/Linux 6.18.32 - 6.18.*
Linux/Linux 7.0.9 - 7.0.*
Linux/Linux 7.1
Linux/Linux 7.1-rc1
Linux/Linux d06c1a9f348d22478c6bc5684f9c990e15ada1e9 - 58b1e9664d8f74d55d8411cc7a7b275a76a6f24f
Linux/Linux d06c1a9f348d22478c6bc5684f9c990e15ada1e9 - bfb2081ba00afbbd15a5ed1ed1acdc3edeea5a98
... and 2 more
Published Jun 08, 2026
Tracked Since Jun 08, 2026