CVE-2026-46252 in Linuxinformation

Résumé

par MITRE • 03/06/2026

In the Linux kernel, the following vulnerability has been resolved:

regulator: core: fix locking in regulator_resolve_supply() error path

If late enabling of a supply regulator fails in regulator_resolve_supply(), the code currently triggers a lockdep warning:

WARNING: drivers/regulator/core.c:2649 at _regulator_put+0x80/0xa0, CPU#6: kworker/u32:4/596 ... Call trace: _regulator_put+0x80/0xa0 (P) regulator_resolve_supply+0x7cc/0xbe0 regulator_register_resolve_supply+0x28/0xb8

as the regulator_list_mutex must be held when calling _regulator_put().

To solve this, simply switch to using regulator_put().

While at it, we should also make sure that no concurrent access happens to our rdev while we clear out the supply pointer. Add appropriate locking to ensure that.

While the code in question will be removed altogether in a follow-up commit, I believe it is still beneficial to have this corrected before removal for future reference.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

Linux

Réserver

13/05/2026

Divulgation

03/06/2026

Modérer

accepté

Entrée

VDB-368162

CPE

prêt

CWE

CWE-667 (confirmé)

CVSS

4.8 (VulDB)

EPSS

0.00000

KEV

non

Activités

très faible

Secteur

Lawfirm, Telecommunication, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-46252
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-46252
CVE Details	https://www.cvedetails.com/cve/CVE-2026-46252/

◂ Précédent Aperçu Suivant ▸

Interested in the pricing of exploits?

See the underground prices here!