NULL pointer dereference in Linux kernel - CVE-2026-53348
Published: July 2, 2026
Linux kernel
Detailed vulnerability description
The vulnerability allows a local attacker to cause a denial of service.
The vulnerability exists due to a NULL pointer dereference in sdca_dev_unregister_functions when unregistering SDCA function devices after partial registration failure or cleanup races with probe deferral. A local attacker can trigger device registration failure or a cleanup race to cause a denial of service.
This can result in a kernel oops during SoundWire device cleanup.