Skip to main content

Linux Kernel EUVDEUVD-2026-26607

| CVE-2026-43008 MEDIUM
NULL Pointer Dereference (CWE-476)
2026-05-01 Linux
5.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
SUSE
MEDIUM
qualitative
Red Hat
MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

7
Analysis Generated
May 07, 2026 - 23:00 vuln.today
CVSS changed
May 07, 2026 - 20:37 NVD
5.5 (MEDIUM)
Patch available
May 01, 2026 - 16:33 EUVD
Patch released
May 01, 2026 - 15:24 nvd
Patch available
EUVD ID Assigned
May 01, 2026 - 15:00 euvd
EUVD-2026-26607
CVE Published
May 01, 2026 - 14:15 nvd
MEDIUM 5.5
CVE Published
May 01, 2026 - 14:15 nvd
N/A

DescriptionCVE.org

In the Linux kernel, the following vulnerability has been resolved:

gpio: qixis-fpga: Fix error handling for devm_regmap_init_mmio()

devm_regmap_init_mmio() returns an ERR_PTR() on failure, not NULL. The original code checked for NULL which would never trigger on error, potentially leading to an invalid pointer dereference. Use IS_ERR() and PTR_ERR() to properly handle the error case.

AnalysisAI

Denial of service via null pointer dereference in Linux kernel gpio-qixis-fpga driver affects local users with limited privileges. The driver incorrectly checks for NULL return value from devm_regmap_init_mmio(), which returns ERR_PTR() on failure, allowing a local attacker with user-level privileges to trigger a kernel panic by causing improper error handling. EPSS score is low (0.02%), indicating limited exploitation probability despite CVSS 5.5 severity.

Technical ContextAI

The Linux kernel gpio-qixis-fpga driver initializes a regmap memory-mapped I/O interface using devm_regmap_init_mmio(). This function, part of the Linux regmap subsystem, returns encoded error pointers (ERR_PTR) rather than NULL on failure. The vulnerability stems from CWE-476 (null pointer dereference) where the original code performs an insufficient NULL check that fails to catch the actual error condition returned by ERR_PTR(). The fix employs IS_ERR() and PTR_ERR() macros, which are the correct kernel-space pattern for handling encoded error pointers. The gpio-qixis-fpga driver is used for FPGA-based GPIO control on Freescale/NXP QIXIS evaluation boards.

RemediationAI

Apply the vendor-released patch by upgrading to Linux kernel version 6.19.12 or later (7.0+ recommended). Users unable to upgrade immediately should disable the gpio-qixis-fpga driver if the hardware is not in use, reducing attack surface; this eliminates the vulnerability but sacrifices GPIO functionality on affected FPGA boards. Alternatively, restrict module loading permissions to root only via modprobe configuration or SELinux policies, limiting exposure to authenticated local users with elevated privileges. Apply the kernel patch from git.kernel.org/stable using the upstream commit references provided. The patch replaces the NULL check (if (!regmap)) with proper error handling (if (IS_ERR(regmap))) and retrieves the actual error code via PTR_ERR() for logging and propagation.

Vendor StatusVendor

SUSE

Severity: Medium
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed

Share

EUVD-2026-26607 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy