A flaw was found in the Linux kernel's microchip-core-qspi driver. When multiple devices are connected to the QSPI controller, the built-in chip select (CS) was automatically set to an active state even when Linux attempted to access a device using a General Purpose Input/Output (GPIO) pin for its chip select. This incorrect chip select behavior could lead to unexpected device interactions or operational issues.

Red Hat Enterprise Linux 10 Not affected kernel Red Hat Enterprise Linux 6 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel Red Hat Enterprise Linux 7 Not affected kernel-rt Red Hat Enterprise Linux 8 Not affected kernel Red Hat Enterprise Linux 8 Not affected kernel-rt Red Hat Enterprise Linux 9 Not affected kernel Red Hat Enterprise Linux 9 Not affected kernel-rt https://www.cve.org/CVERecord?id=CVE-2026-46148 https://nvd.nist.gov/vuln/detail/CVE-2026-46148 https://lore.kernel.org/linux-cve-announce/2026052821-CVE-2026-46148-4275@gregkh/T