CVE-2026-45896 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: mtd: intel-dg: Fix accessing regions before setting nregions The regions array is counted by nregions, but it's set only after accessing it: [] UBSAN: array-index-out-of-bounds in drivers/mtd/devices/mtd_intel_dg.c:750:15 [] index 0 is out of range for type '<unknown> [*]' Fix it by also fixing an undesired behavior: the loop silently ignores ENOMEM and continues setting the other entries.

PUBLISHED Reserved 2026-05-13 | Published 2026-05-27 | Updated 2026-05-27 | Assigner Linux

Product status

Default status

unaffected

ceb5ab3cb64637952657be23d347e1c79dd02212 (git) before 721bd22bcf45a63ebd9bd0f478ef721b45cc5383

affected

ceb5ab3cb64637952657be23d347e1c79dd02212 (git) before d58fca8513414b15387460b14a7a0a30405b9c9e

affected

ceb5ab3cb64637952657be23d347e1c79dd02212 (git) before 779c59274d03cc5c07237a2c845dfb71cff77705

affected

Default status

affected

6.17

affected

Any version before 6.17

unaffected

6.18.14 (semver)

unaffected

6.19.4 (semver)

unaffected

7.0 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/721bd22bcf45a63ebd9bd0f478ef721b45cc5383

git.kernel.org/...c/d58fca8513414b15387460b14a7a0a30405b9c9e

git.kernel.org/...c/779c59274d03cc5c07237a2c845dfb71cff77705

cve.org (CVE-2026-45896)

nvd.nist.gov (CVE-2026-45896)

Download JSON

help @ threatint.eu