CVE-2026-43072

high

Description

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: platform_get_irq_byname() returns an int platform_get_irq_byname() will return a negative value if an error happens, so it should be checked and not just passed directly into devm_request_threaded_irq() hoping all will be ok.

References

https://git.kernel.org/stable/c/ef2ee9db13b68c5e332b77c0a7108a2d4d56e114

https://git.kernel.org/stable/c/e597a809a2b97e927060ba182f58eb3e6101bc70

https://git.kernel.org/stable/c/9c10b83a004442c93d7a484c3d221a06a45821e1

https://git.kernel.org/stable/c/63c11b19cdc154fa848a6c3b535bfb1dc7b60378

https://git.kernel.org/stable/c/0c1b117f7ba46fb8f6ebc5e0bfe5b58568c301ba

https://git.kernel.org/stable/c/0185e0494a561edfc482507f9de89c2ad798b33d

Details

Source: Mitre, NVD

Published: 2026-05-05

Updated: 2026-05-05

Risk Information

CVSS v2

Base Score: 5.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Severity: High