CVE-2026-45882

medium Red Hat
EPSS Score
0.0%
Exploitation probability in 30 days
Top 95% most likely to be exploited
Published: May 27, 2026 (44 days ago)
Last Modified: May 27, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's power supply subsystem, specifically in the `pm8916_bms_vm` driver. A race condition during the deallocation and unregistration of the `power_supply` handle and its interrupt handler can lead to a use-after-free vulnerability. This allows an interrupt to be processed using a freed or uninitialized `power_supply` handle. The most important consequence is that this can cause the system to crash or silently corrupt memory.

CWE

CWE-364

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References