{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-23387", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-01-13T15:37:46.008Z", "datePublished": "2026-03-25T10:28:05.031Z", "dateUpdated": "2026-05-11T22:05:53.603Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-11T22:05:53.603Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe()\n\ndevm_add_action_or_reset() already invokes the action on failure,\nso the explicit put causes a double-put."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/pinctrl/cirrus/pinctrl-cs42l43.c"], "versions": [{"version": "9026f31a520d43cc01eb1c08938fc19efadd78cc", "lessThan": "95b14ecc56881dd9a187e1e84dd0daa88ff22c5d", "status": "affected", "versionType": "git"}, {"version": "36f91eeffd03f5c52406e0c4e2e0fb040307d00c", "lessThan": "188ba3468cb7c098c62609d82e9fc58d29ead7f4", "status": "affected", "versionType": "git"}, {"version": "9b07cdf86a0b90556f5b68a6b20b35833b558df3", "lessThan": "ea07fcfbba4301839db3784f09955d9fa3e98090", "status": "affected", "versionType": "git"}, {"version": "9b07cdf86a0b90556f5b68a6b20b35833b558df3", "lessThan": "1e0465139fd9caee7ffefe285ef7d5f21919e474", "status": "affected", "versionType": "git"}, {"version": "9b07cdf86a0b90556f5b68a6b20b35833b558df3", "lessThan": "fd5bed798f45eb3a178ad527b43ab92705faaf8a", "status": "affected", "versionType": "git"}, {"version": "d7adbba9298fd74dde0abed5c93312c08c9e6507", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/pinctrl/cirrus/pinctrl-cs42l43.c"], "versions": [{"version": "6.18", "status": "affected"}, {"version": "0", "lessThan": "6.18", "status": "unaffected", "versionType": "semver"}, {"version": "6.6.130", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.12.77", "lessThanOrEqual": "6.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.17", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19.7", "lessThanOrEqual": "6.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.0", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.6.118", "versionEndExcluding": "6.6.130"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.12.60", "versionEndExcluding": "6.12.77"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.18", "versionEndExcluding": "6.18.17"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.18", "versionEndExcluding": "6.19.7"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.18", "versionEndExcluding": "7.0"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.17.10"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/95b14ecc56881dd9a187e1e84dd0daa88ff22c5d"}, {"url": "https://git.kernel.org/stable/c/188ba3468cb7c098c62609d82e9fc58d29ead7f4"}, {"url": "https://git.kernel.org/stable/c/ea07fcfbba4301839db3784f09955d9fa3e98090"}, {"url": "https://git.kernel.org/stable/c/1e0465139fd9caee7ffefe285ef7d5f21919e474"}, {"url": "https://git.kernel.org/stable/c/fd5bed798f45eb3a178ad527b43ab92705faaf8a"}], "title": "pinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe()", "x_generator": {"engine": "bippy-1.2.0"}}}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "5F232029-F50E-41C6-B08B-907B6983BA50", "versionEndExcluding": "6.6.130", "versionStartIncluding": "6.6.118", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "A4DBE5E9-D939-4DBC-84F6-D57636C8DCA8", "versionEndExcluding": "6.12.77", "versionStartIncluding": "6.12.60", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "AC4D9A16-72F2-4CA3-A8F5-80DD12FD7626", "versionEndExcluding": "6.18", "versionStartIncluding": "6.17.10", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "07E9D8CD-82F0-4CC6-8038-BF71758D583C", "versionEndExcluding": "6.18.17", "versionStartIncluding": "6.18.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "69245D10-0B71-485E-80C3-A64F077004D3", "versionEndExcluding": "6.19.7", "versionStartIncluding": "6.19", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.18:-:*:*:*:*:*:*", "matchCriteriaId": "DCE57113-2223-4308-A0F2-5E6ECFBB3C23", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "F253B622-8837-4245-BCE5-A7BF8FC76A16", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "4AE85AD8-4641-4E7C-A2F4-305E2CD9EE64", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "F666C8D8-6538-46D4-B318-87610DE64C34", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*", "matchCriteriaId": "02259FDA-961B-47BC-AE7F-93D7EC6E90C2", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*", "matchCriteriaId": "58A9FEFF-C040-420D-8F0A-BFDAAA1DF258", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*", "matchCriteriaId": "1D2315C0-D46F-4F85-9754-F9E5E11374A6", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:*", "matchCriteriaId": "512EE3A8-A590-4501-9A94-5D4B268D6138", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe()\n\ndevm_add_action_or_reset() already invokes the action on failure,\nso the explicit put causes a double-put."}, {"lang": "es", "value": "En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\npinctrl: cirrus: cs42l43: Correcci\u00f3n de doble put en cs42l43_pin_probe()\n\ndevm_add_action_or_reset() ya invoca la acci\u00f3n en caso de fallo, por lo que el put expl\u00edcito causa un doble put."}], "id": "CVE-2026-23387", "lastModified": "2026-04-24T18:45:08.230", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-03-25T11:16:39.123", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/188ba3468cb7c098c62609d82e9fc58d29ead7f4"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/1e0465139fd9caee7ffefe285ef7d5f21919e474"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/95b14ecc56881dd9a187e1e84dd0daa88ff22c5d"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/ea07fcfbba4301839db3784f09955d9fa3e98090"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/fd5bed798f45eb3a178ad527b43ab92705faaf8a"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-415"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "kernel: pinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe()", "id": "2451229", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451229"}, "csaw": false, "cwe": "CWE-1341", "details": ["A flaw was found in the Linux kernel, specifically within the `pinctrl` subsystem's `cirrus cs42l43` driver. This flaw involves a 'double-put' error in the `cs42l43_pin_probe()` function, where a resource is incorrectly released twice. This issue arises because the `devm_add_action_or_reset()` function already handles resource cleanup, leading to a redundant release. Exploiting this vulnerability could lead to memory corruption, potentially causing a system crash or denial of service (DoS)."], "name": "CVE-2026-23387", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2026-03-25T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-23387\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-23387\nhttps://lore.kernel.org/linux-cve-announce/2026032544-CVE-2026-23387-4399@gregkh/T"]}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[9026f31a520d43cc01eb1c08938fc19efadd78cc,95b14ecc56881dd9a187e1e84dd0daa88ff22c5d)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[36f91eeffd03f5c52406e0c4e2e0fb040307d00c,188ba3468cb7c098c62609d82e9fc58d29ead7f4)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[9b07cdf86a0b90556f5b68a6b20b35833b558df3,ea07fcfbba4301839db3784f09955d9fa3e98090)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[9b07cdf86a0b90556f5b68a6b20b35833b558df3,1e0465139fd9caee7ffefe285ef7d5f21919e474)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "[9b07cdf86a0b90556f5b68a6b20b35833b558df3,fd5bed798f45eb3a178ad527b43ab92705faaf8a)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "code_commit", "value": "d7adbba9298fd74dde0abed5c93312c08c9e6507"}}], "enrichment": {"confidence": 99.0, "confidence_source": "inferred", "scores": [{"score": 99.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Linux", "source": "cna", "vendor": "Linux"}, "product": "linux_kernel", "vendor": "linux"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "6.18"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[0,6.18)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[6.6.130,6.7.0)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[6.12.77,6.13.0)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[6.18.17,6.19.0)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "[6.19.7,6.20.0)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[7.0-rc3,*]"}}], "enrichment": {"confidence": 99.0, "confidence_source": "inferred", "scores": [{"score": 99.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Linux", "source": "cna", "vendor": "Linux"}, "product": "linux_kernel", "vendor": "linux"}], "analysis": {"en": {"generated_at": "2026-04-29T01:58:55.888766+00:00", "value": {"mitigation_remediation": ["Upgrade the Linux kernel to a version that includes the cs42l43 driver fix.", "Disable the cirrus cs42l43 pin controller driver in the kernel configuration to prevent the double-put from occurring.", "If the driver is built as a module, blacklist or unload the module so it cannot load at boot."], "summary": {"action": "Apply Patch", "impact": "Kernel Crash"}, "threat_synthesis": {"affected_systems": "The vulnerability affects Linux kernel versions 6.18 and 7.0 release candidates 1 through 7, as identified by the provided CPE strings. Any installation of the Linux kernel that includes the cirrus cs42l43 pin controller driver and has not incorporated the commit that removes the redundant release is at risk. Users should verify their kernel version against these affected releases to determine if remediation is required.", "description_and_impact": "A double release of a pin controller resource in the cs42l43 driver can trigger a double free in kernel space. This flaw, classified as CWE\u20111341 and CWE\u2011415, compromises kernel stability by causing an unrecoverable error in kernel memory management. The defect does not directly expose data but undermines the operational reliability of the affected host.", "risk_and_exploitability": "The EPSS score of less than 1% indicates a low probability of recent exploitation, and the vulnerability is not listed in the CISA KEV catalog. Nonetheless, because the flaw resides in kernel mode, an attacker with local or privilege\u2011escalation capabilities could trigger a crash that may disrupt availability. The CVSS score of 7.8 indicates high severity, and the potential for a kernel crash suggests significant impact if exploited."}}}}, "created": "2026-03-25T21:31:29.111517+00:00", "updated": "2026-04-29T02:00:27.291342+00:00", "vendors": ["linux", "linux$PRODUCT$linux_kernel"]}