Copyright © 2012 Red Hat, Inc. All rights reserved. Low 2026-05-27T00:00:00 kernel: mtd: intel-dg: Fix accessing regions before setting nregions 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CWE-909

In the Linux kernel, the following vulnerability has been resolved: mtd: intel-dg: Fix accessing regions before setting nregions The regions array is counted by nregions, but it's set only after accessing it: [] UBSAN: array-index-out-of-bounds in drivers/mtd/devices/mtd_intel_dg.c:750:15 [] index 0 is out of range for type '<unknown> [*]' Fix it by also fixing an undesired behavior: the loop silently ignores ENOMEM and continues setting the other entries.

A flaw was found in the Linux kernel's `mtd_intel_dg` driver. This vulnerability occurs because the `regions` array is accessed before its size (`nregions`) is properly set, leading to an out-of-bounds memory access. A local attacker could potentially exploit this issue to cause system instability or a denial of service (DoS). The flaw also involves the driver silently ignoring memory allocation errors, which can contribute to unexpected system behavior.

Red Hat Enterprise Linux 10 Fix deferred kernel Red Hat Enterprise Linux 6 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel-rt Red Hat Enterprise Linux 8 Not affected kernel Red Hat Enterprise Linux 8 Not affected kernel-rt Red Hat Enterprise Linux 9 Not affected kernel Red Hat Enterprise Linux 9 Not affected kernel-rt https://www.cve.org/CVERecord?id=CVE-2026-45896 https://nvd.nist.gov/vuln/detail/CVE-2026-45896 https://lore.kernel.org/linux-cve-announce/2026052718-CVE-2026-45896-a4e9@gregkh/T