CVE-2026-43355 PUBLISHED

iio: light: bh1780: fix PM runtime leak on error path

Assigner: Linux
Reserved: 01.05.2026 Published: 08.05.2026 Updated: 08.05.2026

In the Linux kernel, the following vulnerability has been resolved:

iio: light: bh1780: fix PM runtime leak on error path

Move pm_runtime_put_autosuspend() before the error check to ensure the PM runtime reference count is always decremented after pm_runtime_get_sync(), regardless of whether the read operation succeeds or fails.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 1f0477f18306c018a954e4f333690a9d0f7efc76 to 1eb3af4f59e09323788860a9155e9766b12891e5 (excl.)
  • affected from 1f0477f18306c018a954e4f333690a9d0f7efc76 to 424bf90e87134effe4bd932608a15286493b11ab (excl.)
  • affected from 1f0477f18306c018a954e4f333690a9d0f7efc76 to fc77e0a5600e620a2ae51ec78933162fb217b20b (excl.)
  • affected from 1f0477f18306c018a954e4f333690a9d0f7efc76 to aae572ddc28578af476cce7da3faec0395ef0bf0 (excl.)
  • affected from 1f0477f18306c018a954e4f333690a9d0f7efc76 to 33661bfc85c14836bfef4425a74b0ca2df4bb5ad (excl.)
  • affected from 1f0477f18306c018a954e4f333690a9d0f7efc76 to dd72e6c3cdea05cad24e99710939086f7a113fb5 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 4.7 is affected
  • unaffected from 0 to 4.7 (excl.)
  • unaffected from 5.10.253 to 5.10.* (incl.)
  • unaffected from 6.1.167 to 6.1.* (incl.)
  • unaffected from 6.6.130 to 6.6.* (incl.)
  • unaffected from 6.18.19 to 6.18.* (incl.)
  • unaffected from 6.19.9 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References