In the Linux kernel, the following vulnerability has been resolved: spi: fsl: fix controller deregistration Make sure to deregister the controller before releasing underlying resources like DMA during driver unbind.
Upstream advisory: https://lore.kernel.org/linux-cve-announce/2026052838-CVE-2026-46226-711b@gregkh/T