Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: Fix previous acpi_processor_errata_piix4() fix After commi f132e089fe89 ("ACPI: processor: Fix NULL-pointer dereference in acpi_processor_errata_piix4()"), device pointers may be dereferenced after dropping references to the device objects pointed to by them, which may cause a use-after-free to occur. Moreover, debug messages about enabling the errata may be printed if the errata flags corresponding to them are unset. Address all of these issues by moving message printing to the points in the code where the errata flags are set.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 6.1.165, < 6.1.167 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/2e369ba9eb7b8a06e9cc35a3e7fe73e59272f8c2Patch
- https://git.kernel.org/stable/c/68408e8f9e366ad9850a66ac65cb569f13bf6cd4Patch
- https://git.kernel.org/stable/c/8583f62259e1b315d5239371adfb36939cdab741Patch
- https://git.kernel.org/stable/c/98473309a36acc271009b85e0bb53a4c0dddf5c2Patch
- https://git.kernel.org/stable/c/bf504b229cb8d534eccbaeaa23eba34c05131e25Patch
- https://git.kernel.org/stable/c/e0c470049344e9346fff79d7e2362212c216665ePatch
- https://git.kernel.org/stable/c/edf4c2aaee08e8fd503fbae705c801e92a0b55d7Patch
FAQ
What is CVE-2026-23443?
CVE-2026-23443 is a vulnerability with a CVSS score of 5.5 (MEDIUM). In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: Fix previous acpi_processor_errata_piix4() fix After commi f132e089fe89 ("ACPI: processor: Fix NULL-pointer deref...
How severe is CVE-2026-23443?
CVE-2026-23443 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-23443?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.