In the Linux kernel, the following vulnerability has been resolved:
staging: greybus: lights: avoid NULL deref
gblightslightconfig() stores channelcount before allocating the channels array. If kcalloc() fails, gblightsrelease() iterates the non-zero count and dereferences light->channels, which is NULL.
Allocate channels first and only then publish channels_count so the cleanup path can't walk a NULL pointer.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/45xxx/CVE-2026-45978.json",
"cna_assigner": "Linux"
}