CVE-2026-46097
Gravedad:
Pendiente de análisis
Tipo:
No Disponible / Otro tipo
Fecha de publicación:
27/05/2026
Última modificación:
27/05/2026
Descripción
*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
Input: edt-ft5x06 - fix use-after-free in debugfs teardown<br />
<br />
The commit 68743c500c6e ("Input: edt-ft5x06 - use per-client debugfs<br />
directory") removed the manual debugfs teardown, relying on the I2C core<br />
to handle it. However, this creates a window where debugfs files are<br />
still accessible after edt_ft5x06_ts_teardown_debugfs() frees<br />
tsdata->raw_buffer.<br />
<br />
To prevent a use-after-free, protect the freeing of raw_buffer with the<br />
device mutex and set raw_buffer to NULL. The debugfs read function<br />
already checks if raw_buffer is NULL under the same mutex, so this<br />
safely avoids the use-after-free.



