Description
In the Linux kernel, the following vulnerability has been resolved:

pinctrl: mcp23s08: Initialize mcp->dev and mcp->addr before regmap init

Regmap initialization triggers regcache_maple_populate() which attempts
SPI read to populate cache. SPI read requires mcp->dev and mcp->addr to
be set, without them, NULL pointer dereference occurs during probe.

Move initialization before mcp23s08_spi_regmap_init() call.
Published: 2026-07-01
Score: n/a
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

During the probe of the MCP23S08 pinctrl driver, the regmap initialization triggers a SPI read that attempts to populate the cache. If the struct members mcp->dev and mcp->addr are not initialized before this operation, a null pointer dereference occurs, leading to a kernel panic or crash. The vulnerability is a classic NULL pointer dereference flaw that can result in a denial of service.

Affected Systems

All Linux kernel releases that include the pinctrl:mcp23s08 driver without the patch, typically kernel versions prior to the commit that moves initialization before regmap init. The affected vendor is Linux within the Linux kernel source tree, impacting any distribution that ships the unpatched kernel.

Risk and Exploitability

The EPSS score is not provided and the vulnerability is not listed in the CISA KEV catalog, indicating limited public exploitation data. However, the vulnerability has a high impact due to the kernel crash, and the exploitation likelihood is elevated for environments where the MCP23S08 device is present and the driver is loaded. The attack vector is inferred to be local, requiring the attacker to have the ability to trigger device probes or influence hardware configuration.

Generated by OpenCVE AI on July 2, 2026 at 13:32 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the kernel to a version that includes the patched MCP23S08 driver, which initializes mcp->dev and mcp->addr before calling regmap_init.
  • If an upgrade is temporarily infeasible, disable the MCP23S08 pinctrl driver or prevent the device from being probed until the driver is patched.
  • As a last resort, manually apply the initialization sequence before regmap_init in, ensuring mcp->dev and mcp->addr are set to valid values.

Generated by OpenCVE AI on July 2, 2026 at 13:32 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 02 Jul 2026 00:15:00 +0000


Wed, 01 Jul 2026 17:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-476

Wed, 01 Jul 2026 13:45:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: pinctrl: mcp23s08: Initialize mcp->dev and mcp->addr before regmap init Regmap initialization triggers regcache_maple_populate() which attempts SPI read to populate cache. SPI read requires mcp->dev and mcp->addr to be set, without them, NULL pointer dereference occurs during probe. Move initialization before mcp23s08_spi_regmap_init() call.
Title pinctrl: mcp23s08: Initialize mcp->dev and mcp->addr before regmap init
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-07-01T13:32:24.546Z

Reserved: 2026-06-09T07:44:35.399Z

Link: CVE-2026-53344

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-07-01T00:00:00Z

Links: CVE-2026-53344 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-07-02T13:45:02Z

Weaknesses