CVE-2026-45871
published 2026-05-27CVE-2026-45871: In the Linux kernel, the following vulnerability has been resolved: tpm: st33zp24: Fix missing cleanup on get_burstcount() error get_burstcount() can return…
medium5.5
In the Linux kernel, the following vulnerability has been resolved:
tpm: st33zp24: Fix missing cleanup on get_burstcount() error
get_burstcount() can return -EBUSY on timeout. When this happens,
st33zp24_send() returns directly without releasing the locality
acquired earlier.
Use goto out_err to ensure proper cleanup when get_burstcount() fails.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux | — | — |
| linux | linux | >= bf38b8710892333cec2d8069644eb36ff435fd6f < e0ce3da82341fcd6194175f1837946b2a894c625 | e0ce3da82341fcd6194175f1837946b2a894c625 |
| linux | linux | >= bf38b8710892333cec2d8069644eb36ff435fd6f < 7687133509cf66ced120b667fefd21f80bf17993 | 7687133509cf66ced120b667fefd21f80bf17993 |
| linux | linux | >= bf38b8710892333cec2d8069644eb36ff435fd6f < 1256c6dc96d1e687e6e9b63088156ed07411b00c | 1256c6dc96d1e687e6e9b63088156ed07411b00c |
| linux | linux | >= bf38b8710892333cec2d8069644eb36ff435fd6f < a51cff9be046e13e1c1b2fe45d5c48b582ec9b8c | a51cff9be046e13e1c1b2fe45d5c48b582ec9b8c |
| linux | linux | >= bf38b8710892333cec2d8069644eb36ff435fd6f < cc09d55f519e15355de343264a22ac6682b8305e | cc09d55f519e15355de343264a22ac6682b8305e |
| linux | linux | >= bf38b8710892333cec2d8069644eb36ff435fd6f < ec15eb67fe9df87981b4829b901ec254273ca483 | ec15eb67fe9df87981b4829b901ec254273ca483 |
| linux | linux | >= bf38b8710892333cec2d8069644eb36ff435fd6f < 4fffb77d35d038f146e6192da583dbe4971d869e | 4fffb77d35d038f146e6192da583dbe4971d869e |
| linux | linux | >= bf38b8710892333cec2d8069644eb36ff435fd6f < 3e91b44c93ad2871f89fc2a98c5e4fe6ca5db3d9 | 3e91b44c93ad2871f89fc2a98c5e4fe6ca5db3d9 |
| linux | linux_kernel | — | — |