{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-46219","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2026-05-13T15:03:33.105Z","datePublished":"2026-05-28T09:40:35.297Z","dateUpdated":"2026-06-14T18:03:33.018Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-06-14T18:03:33.018Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nspi: mpc52xx: fix use-after-free on unbind\n\nThe state machine work is scheduled by the interrupt handler and\ntherefore needs to be cancelled after disabling interrupts to avoid a\npotential use-after-free."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/spi/spi-mpc52xx.c"],"versions":[{"version":"e0c6ce8424095c2da32a063d3fc027494c689817","lessThan":"ac8316c896c79f32c1d0a38cb41fd2b14cf8112e","status":"affected","versionType":"git"},{"version":"cd5106c77d6d6828aa82449f01f4eb436d602a21","lessThan":"ed929d40963073f23cfb50219ccbcc6e0c3ea641","status":"affected","versionType":"git"},{"version":"373d55a47dc662e5e30d12ad5d334312f757c1f1","lessThan":"0944b20e9dfa2917bd70eb5b301cbb67fe54a718","status":"affected","versionType":"git"},{"version":"f65d85bc1ffd8a2c194bb2cd65e35ed3648ddd59","lessThan":"bb6b50f709c5a01906ff72a07fdc070bb3357188","status":"affected","versionType":"git"},{"version":"90b72189de2cddacb26250579da0510b29a8b82b","lessThan":"ee52da0dd83ebcd89ecbbe2660c57b15a25489f2","status":"affected","versionType":"git"},{"version":"984836621aad98802d92c4a3047114cf518074c8","lessThan":"6c3e413919a12627d04a31a4a5fccb9fc129bb02","status":"affected","versionType":"git"},{"version":"984836621aad98802d92c4a3047114cf518074c8","lessThan":"bbcd6dd8e9f264440eaf6167382bf404911c1c46","status":"affected","versionType":"git"},{"version":"984836621aad98802d92c4a3047114cf518074c8","lessThan":"706b3dc2ac7a998c55e14b3fd2e8f934c367e6e0","status":"affected","versionType":"git"},{"version":"d0cde3911cf24e1bcdd4caa1d1b9ef57589db5a1","status":"affected","versionType":"git"},{"version":"5.10.231","lessThan":"5.10.258","status":"affected","versionType":"semver"},{"version":"5.15.174","lessThan":"5.15.209","status":"affected","versionType":"semver"},{"version":"6.1.120","lessThan":"6.1.175","status":"affected","versionType":"semver"},{"version":"6.6.66","lessThan":"6.6.140","status":"affected","versionType":"semver"},{"version":"6.12.5","lessThan":"6.12.90","status":"affected","versionType":"semver"},{"version":"5.4.287","lessThan":"5.5","status":"affected","versionType":"semver"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/spi/spi-mpc52xx.c"],"versions":[{"version":"6.13","status":"affected"},{"version":"0","lessThan":"6.13","status":"unaffected","versionType":"semver"},{"version":"5.10.258","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.209","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.175","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.6.140","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.90","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.18.32","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"7.0.9","lessThanOrEqual":"7.0.*","status":"unaffected","versionType":"semver"},{"version":"7.1","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.10.231","versionEndExcluding":"5.10.258"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.15.174","versionEndExcluding":"5.15.209"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1.120","versionEndExcluding":"6.1.175"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.6.66","versionEndExcluding":"6.6.140"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.12.5","versionEndExcluding":"6.12.90"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"6.18.32"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"7.0.9"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.13","versionEndExcluding":"7.1"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.4.287"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/ac8316c896c79f32c1d0a38cb41fd2b14cf8112e"},{"url":"https://git.kernel.org/stable/c/ed929d40963073f23cfb50219ccbcc6e0c3ea641"},{"url":"https://git.kernel.org/stable/c/0944b20e9dfa2917bd70eb5b301cbb67fe54a718"},{"url":"https://git.kernel.org/stable/c/bb6b50f709c5a01906ff72a07fdc070bb3357188"},{"url":"https://git.kernel.org/stable/c/ee52da0dd83ebcd89ecbbe2660c57b15a25489f2"},{"url":"https://git.kernel.org/stable/c/6c3e413919a12627d04a31a4a5fccb9fc129bb02"},{"url":"https://git.kernel.org/stable/c/bbcd6dd8e9f264440eaf6167382bf404911c1c46"},{"url":"https://git.kernel.org/stable/c/706b3dc2ac7a998c55e14b3fd2e8f934c367e6e0"}],"title":"spi: mpc52xx: fix use-after-free on unbind","x_generator":{"engine":"bippy-1.2.0"}}}}