CVE-2026-46134

{"id": "CVE-2026-46134", "cveTags": [], "metrics": {}, "published": "2026-05-28T10:16:28.970", "references": [{"url": "https://git.kernel.org/stable/c/23ae72e8c2f1c1d1da8cbd479320ddcfcc9c7435", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/3b13d5883a097f538fccbab1c61c95546d29621f", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/525cb7ba6661074c1c5cc3772bccc6afab6791ef", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}], "vulnStatus": "Awaiting Analysis", "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/chrome: cros_ec_typec: Init mutex in Thunderbolt registration\n\ncros_typec_register_thunderbolt() missed initializing the `adata->lock`\nmutex. This leads to a NULL dereference when the mutex is later\nacquired (e.g. in cros_typec_altmode_work()).\n\nInitialize the mutex in cros_typec_register_thunderbolt() to fix the\nissue."}], "lastModified": "2026-05-28T13:44:01.663", "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}