CVE-2026-46203

Source
https://cve.org/CVERecord?id=CVE-2026-46203
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46203.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-46203
Downstream
Related
Published
2026-05-28T09:40:20.631Z
Modified
2026-07-15T01:49:16.968958859Z
Summary
spi: cadence-quadspi: fix unclocked access on unbind
Details

In the Linux kernel, the following vulnerability has been resolved:

spi: cadence-quadspi: fix unclocked access on unbind

Make sure that the controller is runtime resumed before disabling it during driver unbind to avoid an unclocked register access.

This issue was flagged by Sashiko when reviewing a controller deregistration fix.

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46203.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
0578a6dbfe7514db7134501cf93acc21cf13e479
Fixed
2e7cd62c37f51823c2bb79de1d4d76d0c1678c7e
Fixed
63a9f6012f453578898c9fcc13c8452a8651104e
Fixed
d67a5311818b3e6481a1e4293c9337ebfee73111
Fixed
233db2cb14db8b1935dda52a6affd97276462b82

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46203.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.94
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.36
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.9

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46203.json"