PT-2026-51922 · Linux · Linux

Published

2026-06-24

Updated

2026-06-24

CVE-2026-53028

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

In the Linux kernel, the following vulnerability has been resolved:

usb: typec: Fix error pointer dereference

The variable tps->partner is checked for an error pointer and then if it is, it sends an error message but does not return and then immediately dereferenced a few lines below:

tps->partner = typec register partner(tps->port, &desc); if (IS ERR(tps->partner)) dev warn(tps->dev, "%s: failed to register partnet ", func );

if (desc.identity) { typec partner set identity(tps->partner); cd321x->cur partner identity = st.partner identity; }

Add early return and fix spelling mistake in error message.

Detected by Smatch: drivers/usb/typec/tipd/core.c:827 cd321x update work() error: 'tps->partner' dereferencing possible ERR PTR()

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-53028

Affected Products

Linux

PT-2026-51922 · Linux · Linux

CVE-2026-53028

Related Identifiers

Affected Products

References · 4