CVE-2026-45874 PUBLISHED

phy: freescale: imx8qm-hsio: fix NULL pointer dereference

Assigner: Linux
Reserved: 13.05.2026 Published: 27.05.2026 Updated: 27.05.2026

In the Linux kernel, the following vulnerability has been resolved:

phy: freescale: imx8qm-hsio: fix NULL pointer dereference

During the probe the refclk_pad pointer is set to NULL if the 'fsl,refclk-pad-mode' property is not defined in the devicetree node. But in imx_hsio_configure_clk_pad() this pointer is unconditionally used which could result in a NULL pointer dereference. So check the pointer before to use it.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 82c56b6dd24fcdf811f2b47b72e5585c8a79b685 to a771b386cb6c6e582e7b50f8eeff3347ff887f71 (excl.)
  • affected from 82c56b6dd24fcdf811f2b47b72e5585c8a79b685 to dd8b9ba3d9701832cfb5dcefd8b43250df28dbc2 (excl.)
  • affected from 82c56b6dd24fcdf811f2b47b72e5585c8a79b685 to 8d29e81e9cdec84d4b9acb1736550d35e86c88af (excl.)
  • affected from 82c56b6dd24fcdf811f2b47b72e5585c8a79b685 to 4dd5d4c0361af0a3fd24f45c815996abf4429770 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 6.11 is affected
  • unaffected from 0 to 6.11 (excl.)
  • unaffected from 6.12.75 to 6.12.* (incl.)
  • unaffected from 6.18.14 to 6.18.* (incl.)
  • unaffected from 6.19.4 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References