CVE-2026-45925

Summary

In the Linux kernel, the following vulnerability has been resolved:

thermal/of: Fix reference leak in thermal_of_cm_lookup()

In thermal_of_cm_lookup(), tr_np is obtained via of_parse_phandle(), but never released.

Use the __free(device_node) cleanup attribute to automatically release the node and fix the leak.

[ rjw: Changelog edits ]

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe11df3bffde16fd3b6843aadfb921b5be0f8b55a < 8af710156c53cdb392d529497ef2b3a10a1f9370affected
LinuxLinux423de5b5bc5b267586b449abd1c4fde562aa0cf9 < 8344d5da9df74fdbef676214d0c482fc822a01caaffected
LinuxLinux423de5b5bc5b267586b449abd1c4fde562aa0cf9 < 025796ccd7f9f2e013e12319de26b6c021a80c1faffected
LinuxLinux423de5b5bc5b267586b449abd1c4fde562aa0cf9 < a1fe789a96fe47733c133134fd264cb7ca832395affected
LinuxLinuxa1e9e19a70eed67a69ca697368739ea1a3ba5780affected
LinuxLinux6.12.18 < 6.12.75affected
LinuxLinux6.13.6 < 6.14affected
LinuxLinux6.14affected
LinuxLinux0 < 6.14unaffected
LinuxLinux6.12.75 <= 6.12.*unaffected
LinuxLinux6.18.14 <= 6.18.*unaffected
LinuxLinux6.19.4 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References