CVE-2026-53058

A flaw was found in the drm/bridge: cadence: cdns-mhdp8546-core component of the Linux kernel. This vulnerability allows for a NULL pointer dereference during error handling within the atomicenable function. If cdnsmhdplinkup or cdnsmhdpregread encounter errors, a subsequent attempt to access a...

EUVD-2026-38926

In the Linux kernel, the following vulnerability has been resolved: drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomicenable In case if we get errors in cdnsmhdplinkup or cdnsmhdpregread in atomicenable, we will go to cdnsmhdpmodesetretryfn and will hit NULL pointer...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: net: cadence: macb: Fixed a possible deadlock in macbhalttx. There is a situation where, after THALT is set to a high value, TGO also remains high. Since the jiffies values are never updated, and we are in a context with interrup...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: clocksource/drivers/cadence-ttc: Fixed a memory leak in ttctimerprobe. Matching reports: drivers/clocksource/timer-cadence-ttc.c: Line 529, ttctimerprobe; Warning: ‘timerbaseaddr’ from ofiomap is not released on lines...

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: cadence: A possible null-ptr-deref issue has been fixed in cadencenanddtprobe. This issue could lead to a null-ptr-deref when using ‘res’. If platformgetresource returns NULL, moving using ‘res’ after...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: Soundwire: Cadence – fix invalid PDI offset For some reason, we added an offset to the PDI; presumably to skip PDI0 and PDI1, which are reserved for BPT. However, this code is completely incorrect and leads to out-of-bounds acces...

CVE-2026-54269 vulnerabilities

Vulnerabilities for packages: pulumi, langfuse-fips, kibana, langfuse, kubeflow-centraldashboard, cadence-web, vitess, jitsucom-jitsu...

GHSA-F38Q-MGVJ-VPH7 vulnerabilities

Vulnerabilities for packages: pulumi, langfuse-fips, kibana, langfuse, kubeflow-centraldashboard, cadence-web, vitess, jitsucom-jitsu...

SUSE CVE-2026-46203

In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: fix unclocked access on unbind Make sure that the controller is runtime resumed before disabling it during driver unbind to avoid an unclocked register access. This issue was flagged by Sashiko when reviewin...

Linux Distros Unpatched Vulnerability : CVE-2026-46203

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - spi: cadence-quadspi: fix unclocked access on unbind Make sure that the controller is runtime resumed before disabling it during driver unbind to avoid an...

CVE-2026-46203

A flaw was found in the Linux kernel, specifically within the spi: cadence-quadspi driver. This vulnerability occurs when the controller is not properly runtime resumed before being disabled during driver unbind, leading to unclocked register access. A local attacker could potentially exploit thi...

CVE-2026-46203

In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: fix unclocked access on unbind Make sure that the controller is runtime resumed before disabling it during driver unbind to avoid an unclocked register access. This issue was flagged by Sashiko when reviewin...

UBUNTU-CVE-2026-46203

In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: fix unclocked access on unbind Make sure that the controller is runtime resumed before disabling it during driver unbind to avoid an unclocked register access. This issue was flagged by Sashiko when reviewin...

CVE-2026-46203 spi: cadence-quadspi: fix unclocked access on unbind

In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: fix unclocked access on unbind Make sure that the controller is runtime resumed before disabling it during driver unbind to avoid an unclocked register access. This issue was flagged by Sashiko when reviewin...

EUVD-2026-32830

In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: fix unclocked access on unbind Make sure that the controller is runtime resumed before disabling it during driver unbind to avoid an unclocked register access. This issue was flagged by Sashiko when reviewin...

CVE-2026-46203

In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: fix unclocked access on unbind Make sure that the controller is runtime resumed before disabling it during driver unbind to avoid an unclocked register access. This issue was flagged by Sashiko when reviewin...

CVE-2026-46203

The CVE-2026-46203 issue affects the Linux kernel, specifically the spi: cadence-quadspi driver. The root cause is unclocked register access that can occur if the controller is not runtime-resumed before being disabled during driver unbind. The fix ensures the controller is runtime resumed prior ...

CVE-2026-46203

In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: fix unclocked access on unbind Make sure that the controller is runtime resumed before disabling it during driver unbind to avoid an unclocked register access. This issue was flagged by Sashiko when reviewin...

CVE-2026-45911

A flaw was found in the Linux kernel's Cadence Design Systems USB3 cdns3 driver. During system resume, if the USB role is switched to host mode, the driver attempts to access an uninitialized device, leading to a NULL pointer dereference. This can be exploited by a local user to cause a system...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the SPI Cadence-QuadSPI driver failing to ensure that the controller remains awake during...