CVE-2026-46083

0.0

spi: fix resource leaks on device setup failure

Overview
Vulnerability Timeline

Overview

Description

In the Linux kernel, the following vulnerability has been resolved: spi: fix resource leaks on device setup failure Make sure to call controller cleanup() if spi_setup() fails while registering a device to avoid leaking any resources allocated by setup().

Details

INFO

Published Date :

May 27, 2026, 2:17 p.m.

Last Modified :

May 27, 2026, 2:48 p.m.

Remotely Exploit :

No

Source :

416baaa9-dc9f-4396-8d5f-8c081fb06d67

Impact

Affected Products

The following products are affected by CVE-2026-46083 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID	Vendor	Product	Action
1	Linux	linux_kernel

: Total Affected Vendor : 1 | Products : 1

Solution

Apply kernel updates to fix resource leaks during device setup.

Update the Linux kernel to the latest version.
Apply the specific patch for spi: fix resource leaks.
Ensure controller cleanup is called on setup failure.

References

References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2026-46083.

URL	Resource
https://git.kernel.org/stable/c/11baa8b24bcb07ae2048f2566a220021d766abe0
https://git.kernel.org/stable/c/1e774294b2f944f59e03a04eb438768a4b93c3ce
https://git.kernel.org/stable/c/a2c817c629430fbbd54273525b472dac96e2c8fd
https://git.kernel.org/stable/c/db357034f7e0cf23f233f414a8508312dfe8fbbe
https://git.kernel.org/stable/c/dbcead54b12468d9aa54c0e1f0042d838ec3b0ae

CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2026-46083 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2026-46083 weaknesses.

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2026-46083 vulnerability anywhere in the article.

Results are limited to the first 20 news articles due to potential performance issues.

The following table lists the changes that have been made to the CVE-2026-46083 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

New CVE Received by 416baaa9-dc9f-4396-8d5f-8c081fb06d67

May. 27, 2026

Action	Type	New Value
Added	Description	In the Linux kernel, the following vulnerability has been resolved: spi: fix resource leaks on device setup failure Make sure to call controller cleanup() if spi_setup() fails while registering a device to avoid leaking any resources allocated by setup().
Added	Reference	https://git.kernel.org/stable/c/11baa8b24bcb07ae2048f2566a220021d766abe0
Added	Reference	https://git.kernel.org/stable/c/1e774294b2f944f59e03a04eb438768a4b93c3ce
Added	Reference	https://git.kernel.org/stable/c/a2c817c629430fbbd54273525b472dac96e2c8fd
Added	Reference	https://git.kernel.org/stable/c/db357034f7e0cf23f233f414a8508312dfe8fbbe
Added	Reference	https://git.kernel.org/stable/c/dbcead54b12468d9aa54c0e1f0042d838ec3b0ae

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.

Misconfiguration

Browse by Apps