Medium severity5.5NVD Advisory· Published Apr 24, 2026· Updated Apr 27, 2026
CVE-2026-31549
CVE-2026-31549
Description
In the Linux kernel, the following vulnerability has been resolved:
i2c: cp2615: fix serial string NULL-deref at probe
The cp2615 driver uses the USB device serial string as the i2c adapter name but does not make sure that the string exists.
Verify that the device has a serial number before accessing it to avoid triggering a NULL-pointer dereference (e.g. with malicious devices).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=5.13.1,<5.15.203
- cpe:2.3:o:linux:linux_kernel:5.13:-:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
7- git.kernel.org/stable/c/13ccf9b106bba121728f1625c4375a1bd8f5c5a3nvdPatch
- git.kernel.org/stable/c/4a22af879172336370ae3e81e7f65fb2f69472eenvdPatch
- git.kernel.org/stable/c/69aece634a7eebafd9a596e5494d52facf6f26ecnvdPatch
- git.kernel.org/stable/c/a9778298f47036866ea15eeb17242e8a4612580fnvdPatch
- git.kernel.org/stable/c/aa79f996eb41e95aed85a1bd7f56bcd6a3842008nvdPatch
- git.kernel.org/stable/c/e68c267787778bcdf3d91b06f794faaba7f0d1d1nvdPatch
- git.kernel.org/stable/c/efe996bcfe50c2dcc6cf65c574285713b722ced7nvdPatch
News mentions
0No linked articles in our index yet.