PT-2026-43845 · Linux · Linux
Published
2026-05-27
·
Updated
2026-05-27
·
CVE-2026-45978
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
In the Linux kernel, the following vulnerability has been resolved:
staging: greybus: lights: avoid NULL deref
gb lights light config() stores channel count before allocating the
channels array. If kcalloc() fails, gb lights release() iterates the
non-zero count and dereferences light->channels, which is NULL.
Allocate channels first and only then publish channels count so the
cleanup path can't walk a NULL pointer.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux