CVE-2026-46134 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: platform/chrome: cros_ec_typec: Init mutex in Thunderbolt registration cros_typec_register_thunderbolt() missed initializing the `adata->lock` mutex. This leads to a NULL dereference when the mutex is later acquired (e.g. in cros_typec_altmode_work()). Initialize the mutex in cros_typec_register_thunderbolt() to fix the issue.

PUBLISHED Reserved 2026-05-13 | Published 2026-05-28 | Updated 2026-05-28 | Assigner Linux

Product status

Default status

unaffected

3b00be26b16ad72c85624ada08cbae2d2c57b6e9 (git) before 23ae72e8c2f1c1d1da8cbd479320ddcfcc9c7435

affected

3b00be26b16ad72c85624ada08cbae2d2c57b6e9 (git) before 3b13d5883a097f538fccbab1c61c95546d29621f

affected

3b00be26b16ad72c85624ada08cbae2d2c57b6e9 (git) before 525cb7ba6661074c1c5cc3772bccc6afab6791ef

affected

Default status

affected

6.14

affected

Any version before 6.14

unaffected

6.18.30 (semver)

unaffected

7.0.7 (semver)

unaffected

7.1-rc3 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/23ae72e8c2f1c1d1da8cbd479320ddcfcc9c7435

git.kernel.org/...c/3b13d5883a097f538fccbab1c61c95546d29621f

git.kernel.org/...c/525cb7ba6661074c1c5cc3772bccc6afab6791ef

cve.org (CVE-2026-46134)

nvd.nist.gov (CVE-2026-46134)

Download JSON

help @ threatint.eu