CVE-2026-53307
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
26/06/2026
Last modified:
30/06/2026
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
pinctrl: pinconf-generic: Fully validate &#39;pinmux&#39; property<br />
<br />
The pinconf_generic_parse_dt_pinmux() assumes that the &#39;pinmux&#39; property<br />
is not empty when present. This might be not true. With that, the allocator<br />
will give a special value in return and not NULL which lead to the crash<br />
when trying to access that (invalid) memory. Fix that by fully validating<br />
&#39;pinmux&#39; value, including its length.



