CVE-2026-23006NULL Pointer Dereference in Linux

CWE-476NULL Pointer Dereference7 documents6 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 99.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
LinuxLinux KernelDebian Linux+1 more
Timeline
PublishedJan 25

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: tlv320adcx140: fix null pointer The "snd_soc_component" in "adcx140_priv" was only used once but never set. It was only used for reaching "dev" which is already present in "adcx140_priv".

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages6 packages

Linuxlinux/linux_kernel6.1.06.1.162+3
NVDlinux/linux_kernel6.1.16.1.162+5
Debianlinux/linux_kernel< 6.1.162-1+2
CVEListV5linux/linux4e82971f7b556cff3491c867e8840e7d788693b9954260a32c21d5072d8e7253c0a8b1627927cb02+5
debiandebian/linux< linux 6.1.162-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

3
OSV
CVE-2026-23006: In the Linux kernel, the following vulnerability has been resolved: ASoC: tlv320adcx140: fix null pointer The "snd_soc_component" in "adcx140_priv" wa2026-01-25
OSV
ASoC: tlv320adcx140: fix null pointer2026-01-25
GHSA
GHSA-8c6x-4fwq-f8m3: In the Linux kernel, the following vulnerability has been resolved: ASoC: tlv320adcx140: fix null pointer The "snd_soc_component" in "adcx140_priv"2026-01-25

📋Vendor Advisories

2
Red Hat
kernel: ASoC: tlv320adcx140: fix null pointer2026-01-25
Debian
CVE-2026-23006: linux - In the Linux kernel, the following vulnerability has been resolved: ASoC: tlv32...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23006 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-23006 — NULL Pointer Dereference in Linux | cvebase