CVE-2026-46180 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential use-after-free issue when stopping watchdog task Watchdog task might end between send_sig() and kthread_stop() calls, what results in the use-after-free issue. Fix this by increasing watchdog task reference count before calling send_sig() and dropping it by switching to kthread_stop_put().

PUBLISHED Reserved 2026-05-13 | Published 2026-05-28 | Updated 2026-05-28 | Assigner Linux

Product status

Default status

unaffected

a9ffda88be7416b8336f644806c2b3ed3ce08b26 (git) before ed4168d1a50fef5be8eca947fbbf05a28507d265

affected

a9ffda88be7416b8336f644806c2b3ed3ce08b26 (git) before d16827cb1d3936f7627d0da6044483f743ebde03

affected

a9ffda88be7416b8336f644806c2b3ed3ce08b26 (git) before 658d2e46c2e9a8eb9b80c5e803ce3c89885b3366

affected

a9ffda88be7416b8336f644806c2b3ed3ce08b26 (git) before 908b92231e1ded53e43fcfad5e0704d83e1b803c

affected

a9ffda88be7416b8336f644806c2b3ed3ce08b26 (git) before c623b63580880cc742255eaed3d79804c1b91143

affected

Default status

affected

3.3

affected

Any version before 3.3

unaffected

6.6.140 (semver)

unaffected

6.12.88 (semver)

unaffected

6.18.30 (semver)

unaffected

7.0.7 (semver)

unaffected

7.1-rc3 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/ed4168d1a50fef5be8eca947fbbf05a28507d265

git.kernel.org/...c/d16827cb1d3936f7627d0da6044483f743ebde03

git.kernel.org/...c/658d2e46c2e9a8eb9b80c5e803ce3c89885b3366

git.kernel.org/...c/908b92231e1ded53e43fcfad5e0704d83e1b803c

git.kernel.org/...c/c623b63580880cc742255eaed3d79804c1b91143

cve.org (CVE-2026-46180)

nvd.nist.gov (CVE-2026-46180)

Download JSON

help @ threatint.eu