CVE-2026-23475

In the Linux kernel, the following vulnerability has been resolved: spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves a window where accessing the sysfs attributes can trigger a...

CVE-2025-38398

The CVE-2025-38398 issue concerns the Linux kernel driver for spi-qpic-snand. The root cause is out-of-bounds memory access in BAM transactions due to allocating BAM memory for only a single codeword during probe; as a result, operations can exceed allocated space, causing memory corruption, NULL...

CVE-2025-38081

In the Linux kernel, the following vulnerability has been resolved: spi-rockchip: Fix register out of bounds access Do not write native chip select stuff for GPIO chip selects. GPIOs can be numbered much higher than native CS. Also, it makes no sense...

Vulnerability of the devm_spi_alloc_master() function in the drivers/spi/spi.c module – The Linux kernel’s SPI device driver support allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the devmspiallocmaster function in the drivers/spi/spi.c module – The Linux kernel’s SPI device driver relies on the reclamation of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

CVE-2021-46959

In the Linux kernel, the following vulnerability has been resolved: spi: Fix use-after-free with devmspialloc We can't rely on the contents of the devres list during spiunregistercontroller, as the list is already torn down at the time we perform devresfind for devmspireleasecontroller. This caus...