CVE-2026-45896 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: mtd: intel-dg: Fix accessing regions before setting nregions The regions array is counted by nregions, but it's set only after accessing it: [] UBSAN: array-index-out-of-bounds in drivers/mtd/devices/mtd_intel_dg.c:750:15 [] index 0 is out of range for type '<unknown> [*]' Fix it by also fixing an undesired behavior: the loop silently ignores ENOMEM and continues setting the other entries.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/721bd22bcf45a63ebd9bd0f478ef721b45cc5383
https://git.kernel.org/stable/c/779c59274d03cc5c07237a2c845dfb71cff77705
https://git.kernel.org/stable/c/d58fca8513414b15387460b14a7a0a30405b9c9e

History

Wed, 27 May 2026 14:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: mtd: intel-dg: Fix accessing regions before setting nregions The regions array is counted by nregions, but it's set only after accessing it: [] UBSAN: array-index-out-of-bounds in drivers/mtd/devices/mtd_intel_dg.c:750:15 [] index 0 is out of range for type '<unknown> [*]' Fix it by also fixing an undesired behavior: the loop silently ignores ENOMEM and continues setting the other entries.
Title		mtd: intel-dg: Fix accessing regions before setting nregions
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/721bd22bcf45a63ebd9bd0f478ef721b45cc5383 https://git.kernel.org/stable/c/779c59274d03cc5c07237a2c845dfb71cff77705 https://git.kernel.org/stable/c/d58fca8513414b15387460b14a7a0a30405b9c9e

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-27T12:17:06.332Z

Updated: 2026-05-27T12:17:06.332Z

Reserved: 2026-05-13T15:03:33.083Z

Link: CVE-2026-45896

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:03.860

Modified: 2026-05-27T14:48:31.480

Link: CVE-2026-45896

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-45896", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-05-13T15:03:33.083Z", "datePublished": "2026-05-27T12:17:06.332Z", "dateUpdated": "2026-05-27T12:17:06.332Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-27T12:17:06.332Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: intel-dg: Fix accessing regions before setting nregions\n\nThe regions array is counted by nregions, but it's set only after\naccessing it:\n\n[] UBSAN: array-index-out-of-bounds in drivers/mtd/devices/mtd_intel_dg.c:750:15\n[] index 0 is out of range for type '<unknown> [*]'\n\nFix it by also fixing an undesired behavior: the loop silently ignores\nENOMEM and continues setting the other entries."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/mtd/devices/mtd_intel_dg.c"], "versions": [{"version": "ceb5ab3cb64637952657be23d347e1c79dd02212", "lessThan": "721bd22bcf45a63ebd9bd0f478ef721b45cc5383", "status": "affected", "versionType": "git"}, {"version": "ceb5ab3cb64637952657be23d347e1c79dd02212", "lessThan": "d58fca8513414b15387460b14a7a0a30405b9c9e", "status": "affected", "versionType": "git"}, {"version": "ceb5ab3cb64637952657be23d347e1c79dd02212", "lessThan": "779c59274d03cc5c07237a2c845dfb71cff77705", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/mtd/devices/mtd_intel_dg.c"], "versions": [{"version": "6.17", "status": "affected"}, {"version": "0", "lessThan": "6.17", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.14", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19.4", "lessThanOrEqual": "6.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.0", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.17", "versionEndExcluding": "6.18.14"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.17", "versionEndExcluding": "6.19.4"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.17", "versionEndExcluding": "7.0"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/721bd22bcf45a63ebd9bd0f478ef721b45cc5383"}, {"url": "https://git.kernel.org/stable/c/d58fca8513414b15387460b14a7a0a30405b9c9e"}, {"url": "https://git.kernel.org/stable/c/779c59274d03cc5c07237a2c845dfb71cff77705"}], "title": "mtd: intel-dg: Fix accessing regions before setting nregions", "x_generator": {"engine": "bippy-1.2.0"}}}}