A flaw was found in the Linux kernel's Greybus Lights subsystem. This vulnerability occurs when the `gb_lights_light_config()` function attempts to store a channel count before successfully allocating the corresponding channels array. If the memory allocation fails, a subsequent cleanup operation can try to access a non-existent memory location, leading to a null pointer dereference. This can result in a system crash, causing a Denial of Service (DoS) for affected systems.

Red Hat Enterprise Linux 10 Not affected kernel Red Hat Enterprise Linux 6 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel-rt Red Hat Enterprise Linux 8 Not affected kernel Red Hat Enterprise Linux 8 Not affected kernel-rt Red Hat Enterprise Linux 9 Not affected kernel Red Hat Enterprise Linux 9 Not affected kernel-rt https://www.cve.org/CVERecord?id=CVE-2026-45978 https://nvd.nist.gov/vuln/detail/CVE-2026-45978 https://lore.kernel.org/linux-cve-announce/2026052737-CVE-2026-45978-c2e9@gregkh/T