CVE-2026-45981

In the Linux kernel, the following vulnerability has been resolved:

s390/cio: Fix device lifecycle handling in css alloc subchannel()

css alloc subchannel() calls device initialize() before setting up the DMA masks. If dma set coherent mask() or dma set mask() fails, the error path frees the subchannel structure directly, bypassing the device model reference counting.

Once device initialize() has been called, the embedded struct device must be released via put device(), allowing the release callback to free the container structure.

Fix the error path by dropping the initial device reference with put device() instead of calling kfree() directly.

This ensures correct device lifetime handling and avoids potential use-after-free or double-free issues.