{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-23387", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-01-13T15:37:46.008Z", "datePublished": "2026-03-25T10:28:05.031Z", "dateUpdated": "2026-03-25T10:28:05.031Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-03-25T10:28:05.031Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe()\n\ndevm_add_action_or_reset() already invokes the action on failure,\nso the explicit put causes a double-put."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/pinctrl/cirrus/pinctrl-cs42l43.c"], "versions": [{"version": "9026f31a520d43cc01eb1c08938fc19efadd78cc", "lessThan": "95b14ecc56881dd9a187e1e84dd0daa88ff22c5d", "status": "affected", "versionType": "git"}, {"version": "36f91eeffd03f5c52406e0c4e2e0fb040307d00c", "lessThan": "188ba3468cb7c098c62609d82e9fc58d29ead7f4", "status": "affected", "versionType": "git"}, {"version": "9b07cdf86a0b90556f5b68a6b20b35833b558df3", "lessThan": "ea07fcfbba4301839db3784f09955d9fa3e98090", "status": "affected", "versionType": "git"}, {"version": "9b07cdf86a0b90556f5b68a6b20b35833b558df3", "lessThan": "1e0465139fd9caee7ffefe285ef7d5f21919e474", "status": "affected", "versionType": "git"}, {"version": "9b07cdf86a0b90556f5b68a6b20b35833b558df3", "lessThan": "fd5bed798f45eb3a178ad527b43ab92705faaf8a", "status": "affected", "versionType": "git"}, {"version": "d7adbba9298fd74dde0abed5c93312c08c9e6507", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/pinctrl/cirrus/pinctrl-cs42l43.c"], "versions": [{"version": "6.18", "status": "affected"}, {"version": "0", "lessThan": "6.18", "status": "unaffected", "versionType": "semver"}, {"version": "6.6.130", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.12.77", "lessThanOrEqual": "6.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.17", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19.7", "lessThanOrEqual": "6.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.0-rc3", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.6.118", "versionEndExcluding": "6.6.130"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.12.60", "versionEndExcluding": "6.12.77"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.18", "versionEndExcluding": "6.18.17"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.18", "versionEndExcluding": "6.19.7"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.18", "versionEndExcluding": "7.0-rc3"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.17.10"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/95b14ecc56881dd9a187e1e84dd0daa88ff22c5d"}, {"url": "https://git.kernel.org/stable/c/188ba3468cb7c098c62609d82e9fc58d29ead7f4"}, {"url": "https://git.kernel.org/stable/c/ea07fcfbba4301839db3784f09955d9fa3e98090"}, {"url": "https://git.kernel.org/stable/c/1e0465139fd9caee7ffefe285ef7d5f21919e474"}, {"url": "https://git.kernel.org/stable/c/fd5bed798f45eb3a178ad527b43ab92705faaf8a"}], "title": "pinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe()", "x_generator": {"engine": "bippy-1.2.0"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe()\n\ndevm_add_action_or_reset() already invokes the action on failure,\nso the explicit put causes a double-put."}], "id": "CVE-2026-23387", "lastModified": "2026-03-25T15:41:33.977", "metrics": {}, "published": "2026-03-25T11:16:39.123", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/188ba3468cb7c098c62609d82e9fc58d29ead7f4"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/1e0465139fd9caee7ffefe285ef7d5f21919e474"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/95b14ecc56881dd9a187e1e84dd0daa88ff22c5d"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/ea07fcfbba4301839db3784f09955d9fa3e98090"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/fd5bed798f45eb3a178ad527b43ab92705faaf8a"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Awaiting Analysis"}

{"bugzilla": {"description": "kernel: pinctrl: cirrus: cs42l43: Fix double-put in cs42l43_pin_probe()", "id": "2451229", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451229"}, "csaw": false, "cwe": "CWE-1341", "details": ["A flaw was found in the Linux kernel, specifically within the `pinctrl` subsystem's `cirrus cs42l43` driver. This flaw involves a 'double-put' error in the `cs42l43_pin_probe()` function, where a resource is incorrectly released twice. This issue arises because the `devm_add_action_or_reset()` function already handles resource cleanup, leading to a redundant release. Exploiting this vulnerability could lead to memory corruption, potentially causing a system crash or denial of service (DoS)."], "name": "CVE-2026-23387", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2026-03-25T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-23387\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-23387\nhttps://lore.kernel.org/linux-cve-announce/2026032544-CVE-2026-23387-4399@gregkh/T"]}

{"analysis": {"en": {"generated_at": "2026-03-25T11:52:03.470447+00:00", "value": {"mitigation_remediation": ["Update the Linux kernel to a version that includes the cs42l43 driver fix.", "Disable or remove the cs42l43 driver if it is not required for the system's operation.", "Reboot the system after the kernel update to ensure the patched driver is loaded."], "summary": {"action": "Apply Patch", "impact": "Potential Use-After-Free causing memory corruption"}, "threat_synthesis": {"affected_systems": "The affected component is the Linux kernel's cirrus/pinctrl driver for the cs42l43 audio codec. Any kernel version of Linux that includes the unpatched cs42l43 driver is vulnerable; the exact version range is not specified, so all releases prior to the commit introducing the fix are considered at risk.", "description_and_impact": "The vulnerability involves a double release of a pin controller resource in the cs42l43 driver. The devm_add_action_or_reset function already performs the cleanup on failure, so the additional put call results in a double free. If executed, this can corrupt kernel memory and lead to a use\u2011after\u2011free condition.", "risk_and_exploitability": "Because the flaw occurs in kernel context, exploitation would require an attacker with the ability to execute code at kernel privilege or to trigger the driver from a privileged process. No public exploits or CVSS scores are available, and the vulnerability is not listed in CISA's KEV catalog. The risk is therefore moderate to high for systems running unpatched kernels, as a single kernel memory corruption could allow privilege escalation or system takeover."}}}}, "created": "2026-03-25T21:31:29.111517+00:00", "updated": "2026-03-25T21:31:29.111564+00:00", "vendors": []}