CVE-2026-23202
Published: Feb 14, 2026
Modified: May 23, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: spi: tegra210-quad: Protect curr_xfer in tegra_qspi_combined_seq_xfer The curr_xfer field is read by the IRQ handler without holding the lock to check if a transfer is in progress. When clearing curr_xfer in the combined sequence transfer loop, protect it with the spinlock to prevent a race with the interrupt handler. Protect the curr_xfer clearing at the exit path of tegra_qspi_combined_seq_xfer() with the spinlock to prevent a race with the interrupt handler that reads this field. Without this protection, the IRQ handler could read a partially updated curr_xfer value, leading to NULL pointer dereference or use-after-free.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 88db8bb7ed1bb474618acdf05ebd4f0758d244e2 - < 9fa4262a80f751d14a6a39d2c03f57db68da2618affected 83309dd551cfd60a5a1a98d9cab19f435b44d46d - < 762e2ce71c8f0238e9eaf05d14da803d9a24422faffected c934e40246da2c5726d14e94719c514e30840df8 - < 712cde8d916889e282727cdf304a43683adf899eaffected 551060efb156c50fe33799038ba8145418cfdeef - < 6fd446178a610a48e80e5c5b487b0707cd01daacaffected 01bbf25c767219b14c3235bfa85906b8d2cb8fbc - < 3bc293d5b56502068481478842f57b3d96e432c7+3 more versions |
Linux | Linux | affected 5.15.198 - < 5.15.200affected 6.1.160 - < 6.1.163affected 6.6.120 - < 6.6.124affected 6.12.63 - < 6.12.70affected 6.18.2 - < 6.18.10 |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now