CVE-2026-63797
The Linux kernel rpmsg subsystem fix for CVE-2026-63797 addresses a use-after-free in the rpmsg_char device path. The issue arose when rpmsg_chrdev_probe() stored the newly allocated eptdev in the default endpoint’s priv before rpmsg_chrdev_eptdev_add() succeeded; if add() failed, eptdev was free...