CVE-2026-46075

Source
https://cve.org/CVERecord?id=CVE-2026-46075
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46075.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-46075
Downstream
Related
Published
2026-05-27T12:58:07.080Z
Modified
2026-06-26T11:56:53.928266446Z
Summary
crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path
Details

In the Linux kernel, the following vulnerability has been resolved:

crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path

Unregister the hwrng to prevent new ->read() calls and flush the Atmel I2C workqueue before teardown to prevent a potential UAF if a queued callback runs while the device is being removed.

Drop the early return to ensure sysfs entries are removed and ->hwrng.priv is freed, preventing a memory leak.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46075.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
da001fb651b00e1deeaf24767dd691ae8152a4f5
Fixed
6dbeb0f788582e1ab5dfc3f41994eac0ec88c2b5
Fixed
c5a45d14234bf26e28a89e3a5dcc08336595cf11
Fixed
775c00d87c385b758da9504cf053acea00e2ed40
Fixed
1193c12126d39bf986a5a9214827b73707b193ab
Fixed
31901371ccd16b42d2f167b1018ba9ae8bd5a6c7
Fixed
bab1adf3b87e4bfac92c4f5963c63db434d561c1

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46075.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.3.0
Fixed
6.1.175
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.140
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.86
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.27
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.4

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46075.json"