CVE-2026-45879 Linux CVE debrief

Who should care

Organizations running Linux systems with BQ25980 battery charger hardware, embedded Linux device manufacturers, kernel maintainers, and security teams tracking Linux kernel driver vulnerabilities.

Technical summary

The BQ25980 power supply driver in the Linux kernel contains a use-after-free vulnerability caused by incorrect ordering of devm-managed resource allocations. The driver requests an IRQ using devm_request_irq() before registering the power_supply handle with devm_power_supply_register(). Since devm resources are automatically freed in reverse allocation order during driver removal, the power_supply handle is deallocated before the IRQ handler is unregistered. This creates a race condition where a pending interrupt can execute the handler with a freed or uninitialized power_supply pointer, invoking power_supply_changed() on invalid memory. The vulnerability affects both driver removal (use-after-free) and probe paths (use of uninitialized pointer). The resolution reorders the initialization to register power_supply before requesting the IRQ, ensuring proper teardown sequencing.

Defensive priority

high

Recommended defensive actions

• Apply kernel patches from stable trees once available for your distribution
• Prioritize patching systems using BQ25980 battery charger hardware
• Monitor vendor security advisories for backported fixes
• Review custom kernel builds for similar devm resource ordering issues in power supply drivers

Evidence notes

Vulnerability description confirms the use-after-free condition and its root cause in devm resource ordering. Multiple kernel.org stable tree commits provided indicate backports to affected kernel versions. No CVSS score or severity assigned by NVD at time of disclosure.

Official resources