{
  "affected": [
    {
      "ranges": [
        {
          "events": [
            {
              "introduced": "e33df1d2f3a0141cd79e770f31999ba0dd7ebfa8"
            },
            {
              "fixed": "a172fa18bc370b776ac1510abb0dcb50a7a35fac"
            },
            {
              "fixed": "8e563d8db50f303171aceb79eec0807e7ba06951"
            },
            {
              "fixed": "d4eb861adde5ce22e459fbd29366f47bb2167977"
            },
            {
              "fixed": "37a430a2d4e66ec8238da6c7f7e48809bf265e13"
            },
            {
              "fixed": "f412e541d25a3dfaf3d53e012ade6ff03cae8a45"
            },
            {
              "fixed": "75f8f3c3e09122270986de9d7aa347d701676761"
            },
            {
              "fixed": "64d4ebf91d082034bbc5ae3ba2d7fd800bc02d06"
            },
            {
              "fixed": "41ff66baf81c6541f4f985dd7eac4494d03d9440"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Linux",
        "name": "Kernel"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "4.2.0"
            },
            {
              "fixed": "5.10.259"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "5.11.0"
            },
            {
              "fixed": "5.15.210"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "5.16.0"
            },
            {
              "fixed": "6.1.176"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "6.2.0"
            },
            {
              "fixed": "6.6.140"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "6.7.0"
            },
            {
              "fixed": "6.12.86"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "6.13.0"
            },
            {
              "fixed": "6.18.27"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "6.19.0"
            },
            {
              "fixed": "7.0.4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "database_specific": {
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46021.json"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: core: Fix thermal zone governor cleanup issues\n\nIf thermal_zone_device_register_with_trips() fails after adding\na thermal governor to the thermal zone being registered, the\ngovernor is not removed from it as appropriate which may lead to\na memory leak.\n\nIn turn, thermal_zone_device_unregister() calls thermal_set_governor()\nwithout acquiring the thermal zone lock beforehand which may race with\na governor update via sysfs and may lead to a use-after-free in that\ncase.\n\nAddress these issues by adding two thermal_set_governor() calls, one to\nthermal_release() to remove the governor from the given thermal zone,\nand one to the thermal zone registration error path to cover failures\npreceding the thermal zone device registration.",
  "id": "CVE-2026-46021",
  "modified": "2026-07-08T05:39:01.390683541Z",
  "published": "2026-05-27T12:56:23.515Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/37a430a2d4e66ec8238da6c7f7e48809bf265e13"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/41ff66baf81c6541f4f985dd7eac4494d03d9440"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/64d4ebf91d082034bbc5ae3ba2d7fd800bc02d06"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/75f8f3c3e09122270986de9d7aa347d701676761"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/8e563d8db50f303171aceb79eec0807e7ba06951"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/a172fa18bc370b776ac1510abb0dcb50a7a35fac"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/d4eb861adde5ce22e459fbd29366f47bb2167977"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/f412e541d25a3dfaf3d53e012ade6ff03cae8a45"
    },
    {
      "type": "ADVISORY",
      "url": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46021.json"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-46021"
    },
    {
      "type": "PACKAGE",
      "url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"
    }
  ],
  "schema_version": "1.7.5",
  "summary": "thermal: core: Fix thermal zone governor cleanup issues"
}