CVE-2026-45909 - Vulnerability Details

- clk: mediatek: Drop __initconst from gates

Description

In the Linux kernel, the following vulnerability has been resolved:

clk: mediatek: Drop __initconst from gates

Since commit 8ceff24a754a ("clk: mediatek: clk-gate: Refactor
mtk_clk_register_gate to use mtk_gate struct") the mtk_gate structs
are no longer just used for initialization/registration, but also at
runtime. So drop __initconst annotations.

Published: 2026-05-27

Score: n/a

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability arises from using the __initconst annotation on Mediatek clock gate structures. Because these structs are used at runtime, the annotation mistakenly marks them as part of the init section, which may be discarded after boot. The patch removes this annotation so the data remains valid for the lifetime of the kernel. This change prevents improper lifetime handling of global data that could lead to kernel instability or a crash, an issue that maps to the CWE-416 (Use‑After‑Free).

Affected Systems

Linux kernel components that provide Mediatek clock gate support, including the mtk_clk_register_gate infrastructure. No specific vendor product versions are listed, but the fix is present in any kernel that includes commit 8ceff24a. Users running kernels that integrate Mediatek hardware drivers should verify that the patch is applied.

Risk and Exploitability

The CVSS score is not provided and EPSS data is unavailable, and the vulnerability has not been listed in the CISA KEV catalog. The likely exploitation scenario would involve a local attacker with the ability to trigger a runtime reference to a Mis-annotated gate structure, potentially leading to a kernel panic. Because the attack requires code presence in the kernel and the vulnerability affects global data lifetime, the risk is moderate but mitigated by the absence of a public exploit and the ease of patching.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`8ceff24a754ac065123ae0ec9f31ec03aff55f8a`	affected	< 1debd9ba7eb18af8fb63dc93517c6bbcab0e31ee
`8ceff24a754ac065123ae0ec9f31ec03aff55f8a`	affected	< 866d8ecc4e789f7d73d6cafd1b122d1b6032b3b1
`8ceff24a754ac065123ae0ec9f31ec03aff55f8a`	affected	< 871afb43e41ad4e8246438de495a939cd0f8113c

Linux

affected

Version	Status	Constraints
`6.18`	affected	—
`0`	unaffected	< 6.18
`6.18.14`	unaffected	≤ 6.18.*
`6.19.4`	unaffected	≤ 6.19.*
`7.0`	unaffected	≤ *

No data.

Vendor Product Confidence Versions

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`[8ceff24a754ac065123ae0ec9f31ec03aff55f8a,1debd9ba7eb18af8fb63dc93517c6bbcab0e31ee)`	affected	code_commit	—
`[8ceff24a754ac065123ae0ec9f31ec03aff55f8a,866d8ecc4e789f7d73d6cafd1b122d1b6032b3b1)`	affected	code_commit	—
`[8ceff24a754ac065123ae0ec9f31ec03aff55f8a,871afb43e41ad4e8246438de495a939cd0f8113c)`	affected	code_commit	—

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`6.18`	affected	generic	—
`[0,6.18)`	unaffected	generic	—
`[6.18.14,6.19.0)`	unaffected	semver	—
`[6.19.4,6.20.0)`	unaffected	semver	—
`[7.0,*]`	unaffected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade the Linux kernel to a version that contains commit 8ceff24a, ensuring that __initconst is no longer applied to Mediatek clock gate structures.
If an upgrade is not immediately possible, review the kernel source for any __initconst annotations on Mediatek driver data and remove them manually to prevent unintended discard of runtime data.
Monitor system logs for repeated kernel panics or assertion failures related to Mediatek clock gates; correlating such events with a missing or outdated kernel can indicate the vulnerability remains unaddressed.

Generated by OpenCVE AI on May 27, 2026 at 17:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/1debd9ba7eb18af8fb63dc93517c6bbcab0e31ee
https://git.kernel.org/stable/c/866d8ecc4e789f7d73d6cafd1b122d1b6032b3b1
https://git.kernel.org/stable/c/871afb43e41ad4e8246438de495a939cd0f8113c

History

Wed, 27 May 2026 18:00:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-416

Wed, 27 May 2026 14:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: Drop __initconst from gates Since commit 8ceff24a754a ("clk: mediatek: clk-gate: Refactor mtk_clk_register_gate to use mtk_gate struct") the mtk_gate structs are no longer just used for initialization/registration, but also at runtime. So drop __initconst annotations.
Title		clk: mediatek: Drop __initconst from gates
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/1debd9ba7eb18af8fb63dc93517c6bbcab0e31ee https://git.kernel.org/stable/c/866d8ecc4e789f7d73d6cafd1b122d1b6032b3b1 https://git.kernel.org/stable/c/871afb43e41ad4e8246438de495a939cd0f8113c

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-27T12:17:23.099Z

Updated: 2026-05-27T12:17:23.099Z

Reserved: 2026-05-13T15:03:33.084Z

Link: CVE-2026-45909

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:05.453

Modified: 2026-05-27T14:48:31.480

Link: CVE-2026-45909

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-27T18:30:26Z

Weaknesses

CWE-416

Impact

Affected Systems

Risk and Exploitability

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object