CVE-2026-45902 Linux CVE debrief

Who should care

Organizations running Linux systems with BQ256xx battery charger hardware, embedded Linux device manufacturers, and kernel maintainers backporting stable fixes

Technical summary

The BQ256xx power supply driver in the Linux kernel used devm_request_irq() before devm_power_supply_register(), violating devm resource ordering guarantees. During driver removal, devm resources free in reverse allocation order, so power_supply_unregister() runs before free_irq(). This window allows pending interrupts to invoke power_supply_changed() with a freed power_supply structure. The vulnerability also affects probe: interrupts can fire before power_supply registration completes, causing uninitialized pointer use. The fix moves devm_request_irq() after devm_power_supply_register(), ensuring the IRQ handler is unregistered before power_supply deallocation during teardown, and that power_supply is valid when interrupts can first fire.

Defensive priority

medium

Recommended defensive actions

• Apply kernel patches from stable branches once available for your distribution
• Monitor vendor security advisories for backported fixes
• If running custom kernels with BQ256xx driver, prioritize updating to patched versions
• Review systems using BQ256xx battery charger ICs for kernel update scheduling

Evidence notes

Vulnerability description and fix details sourced from official CVE record and NVD entry. Kernel commit references confirm the patch addresses the race condition by reordering devm_power_supply_register() before devm_request_irq().

Official resources