Improper resource shutdown or release in Linux kernel - CVE-2026-45875
Published: May 28, 2026
Vulnerability identifier: #VU132608
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2026-45875
CWE-ID: CWE-404
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: Linux Foundation
Affected software:
Linux kernel
Linux kernel
Detailed vulnerability description
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to improper resource shutdown in wm5102_clear_write_sequencer() error handling when processing a failure path. A local user can trigger an error condition to cause a denial of service.
The issue can leave regulators enabled because the cleanup sequence is bypassed on error.
How to mitigate CVE-2026-45875
Install security update from vendor's repository.
Sources
- https://git.kernel.org/stable/c/2049820d1e635e467d795237fd40287213d92349
- https://git.kernel.org/stable/c/3ea01691738b0decb63ea2705d2cdf27f6f26fc0
- https://git.kernel.org/stable/c/445cec7b4fbb1546836ae8e332d158e8d37d0fb6
- https://git.kernel.org/stable/c/4feb753ba6e5e5bbaba868b841a2db41c21e56fa
- https://git.kernel.org/stable/c/54eafc1b0dbcf79c5f8b6dc8d9e92e56b9384c0a
- https://git.kernel.org/stable/c/5a4923726a165593d7601834a6fb2a10ab47b85d
- https://git.kernel.org/stable/c/933c5463873582baaecf5c38401ec4095b1c6269
- https://git.kernel.org/stable/c/e0527c09bcf1e6beeb685a7f4177683866b8609c