{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-45925","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2026-05-13T15:03:33.086Z","datePublished":"2026-05-27T12:17:43.889Z","dateUpdated":"2026-05-27T12:17:43.889Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-27T12:17:43.889Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nthermal/of: Fix reference leak in thermal_of_cm_lookup()\n\nIn thermal_of_cm_lookup(), tr_np is obtained via of_parse_phandle(), but\nnever released.\n\nUse the __free(device_node) cleanup attribute to automatically release\nthe node and fix the leak.\n\n[ rjw: Changelog edits ]"}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/thermal/thermal_of.c"],"versions":[{"version":"e11df3bffde16fd3b6843aadfb921b5be0f8b55a","lessThan":"8af710156c53cdb392d529497ef2b3a10a1f9370","status":"affected","versionType":"git"},{"version":"423de5b5bc5b267586b449abd1c4fde562aa0cf9","lessThan":"8344d5da9df74fdbef676214d0c482fc822a01ca","status":"affected","versionType":"git"},{"version":"423de5b5bc5b267586b449abd1c4fde562aa0cf9","lessThan":"025796ccd7f9f2e013e12319de26b6c021a80c1f","status":"affected","versionType":"git"},{"version":"423de5b5bc5b267586b449abd1c4fde562aa0cf9","lessThan":"a1fe789a96fe47733c133134fd264cb7ca832395","status":"affected","versionType":"git"},{"version":"a1e9e19a70eed67a69ca697368739ea1a3ba5780","status":"affected","versionType":"git"},{"version":"6.12.18","lessThan":"6.12.75","status":"affected","versionType":"semver"},{"version":"6.13.6","lessThan":"6.14","status":"affected","versionType":"semver"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/thermal/thermal_of.c"],"versions":[{"version":"6.14","status":"affected"},{"version":"0","lessThan":"6.14","status":"unaffected","versionType":"semver"},{"version":"6.12.75","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.18.14","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"6.19.4","lessThanOrEqual":"6.19.*","status":"unaffected","versionType":"semver"},{"version":"7.0","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.12.18","versionEndExcluding":"6.12.75"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.14","versionEndExcluding":"6.18.14"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.14","versionEndExcluding":"6.19.4"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.14","versionEndExcluding":"7.0"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13.6"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/8af710156c53cdb392d529497ef2b3a10a1f9370"},{"url":"https://git.kernel.org/stable/c/8344d5da9df74fdbef676214d0c482fc822a01ca"},{"url":"https://git.kernel.org/stable/c/025796ccd7f9f2e013e12319de26b6c021a80c1f"},{"url":"https://git.kernel.org/stable/c/a1fe789a96fe47733c133134fd264cb7ca832395"}],"title":"thermal/of: Fix reference leak in thermal_of_cm_lookup()","x_generator":{"engine":"bippy-1.2.0"}}}}