CVE-2026-23202

Published: Feb 14, 2026Modified: Mar 19, 2026

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: spi: tegra210-quad: Protect curr_xfer in tegra_qspi_combined_seq_xfer The curr_xfer field is read by the IRQ handler without holding the lock to check if a transfer is in progress. When clearing curr_xfer in the combined sequence transfer loop, protect it with the spinlock to prevent a race with the interrupt handler. Protect the curr_xfer clearing at the exit path of tegra_qspi_combined_seq_xfer() with the spinlock to prevent a race with the interrupt handler that reads this field. Without this protection, the IRQ handler could read a partially updated curr_xfer value, leading to NULL pointer dereference or use-after-free.

Affected (14)

Products: Linux: Linux Kernel

Linux

1 product

Linux Kernel

Configuration A

14 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 5.15.198 to 5.15.200
Linux Linux Kernel	From 6.1.160 to 6.1.163
Linux Linux Kernel	From 6.12.63 to 6.12.70
Linux Linux Kernel	From 6.17.13 to 6.18
Linux Linux Kernel	From 6.18.2 to 6.18.10
Linux Linux Kernel	From 6.6.120 to 6.6.124
Linux Linux Kernel	Version 6.19 rc1
Linux Linux Kernel	Version 6.19 rc2
Linux Linux Kernel	Version 6.19 rc3
Linux Linux Kernel	Version 6.19 rc4
Linux Linux Kernel	Version 6.19 rc5
Linux Linux Kernel	Version 6.19 rc6
Linux Linux Kernel	Version 6.19 rc7
Linux Linux Kernel	Version 6.19 rc8