CVE-2026-45996

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the SPI subsystem of the Linux kernel. The subsystem frees the controller and any allocated driver data during deregistration, unless the allocation is device managed. This occurs because the driver data may be freed before the driver has finished using it.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.