2026 matches found
CVE-2026-43317
In the Linux kernel, the following vulnerability has been resolved: most: core: fix leak on early registration failure A recent commit fixed a resource leak on early registration failures but for some reason left out the first error path which still leaks the resources associated with the...
CVE-2026-43317 most: core: fix leak on early registration failure
In the Linux kernel, the following vulnerability has been resolved: most: core: fix leak on early registration failure A recent commit fixed a resource leak on early registration failures but for some reason left out the first error path which still leaks the resources associated with the...
CVE-2025-71299 spi: cadence-quadspi: Parse DT for flashes with the rest of the DT parsing
In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: Parse DT for flashes with the rest of the DT parsing The recent refactoring of where runtime PM is enabled done in commit f1eb4e792bb1 "spi: spi-cadence-quadspi: Enable pm runtime earlier to avoid imbalance"...
CVE-2025-71299
CVE-2025-71299 affects the Linux kernel driver spi_cadence_quadspi. The root cause is a runtime PM interaction during probe: a pm_runtime_disable in error paths could lead to duplicate clock disables when PM is active, especially with missing/broken DT descriptions for flash devices. The document...
PT-2026-39016
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A power management PM runtime leak exists in the bh1780 light sensor driver. The issue occurs because the pm runtime put autosuspend function is not called on the error path following a ...
PT-2026-39019
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A missing RCU Read-Copy-Update unlock in the error path of the try release subpage extent buffer function within the btrfs module can occur. This happens because a rcu read unlock call...
PT-2026-38968
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A resource leak occurs in the core component of the most module during early registration failures. Specifically, the first error path fails to release the resources associated with the...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a double release in the error path of cpufreqdbsgovernorinit. After kobjectput, the functions exi...
PT-2026-38979
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A double free issue exists in the cpufreq dbs governor init function error path. When the kobject init and add function fails, the system calls kobject put&dbs data-attr set.kobj, which...
Linux Distros Unpatched Vulnerability : CVE-2026-43328
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cpufreq: governor: fix double free in cpufreqdbsgovernorinit error path When kobjectinitandadd fails, cpufreqdbsgovernorinit calls...
PT-2026-38983
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the thermal core where the thermal zone device register with trips function fails to properly handle the error path during thermal zone device registration. If the...
CVE-2026-43246
A flaw was found in the Linux kernel's tw9906 driver. An issue in an error path within the tw9906probe function can lead to a memory leak. Specifically, memory allocated during the initialization of the video for Linux 2 V4L2 control handler is not properly released, which could result in system...
SUSE CVE-2026-31745
In the Linux kernel, the following vulnerability has been resolved: reset: gpio: fix double free in resetaddgpioauxdevice error path When auxiliarydeviceadd fails, resetaddgpioauxdevice calls auxiliarydeviceuninitadev. The device release callback resetgpioauxdevicerelease frees adev, but the...
SUSE CVE-2026-43218
In the Linux kernel, the following vulnerability has been resolved: media: i2c/tw9903: Fix potential memory leak in tw9903probe In one of the error paths in tw9903probe, the memory allocated in v4l2ctrlhandlerinit and v4l2ctrlnewstd is not freed. Fix that by calling v4l2ctrlhandlerfree on the...
SUSE CVE-2026-43246
In the Linux kernel, the following vulnerability has been resolved: media: i2c/tw9906: Fix potential memory leak in tw9906probe In one of the error paths in tw9906probe, the memory allocated in v4l2ctrlhandlerinit and v4l2ctrlnewstd is not freed. Fix that by calling v4l2ctrlhandlerfree on the...
CVE-2026-43218
A flaw was found in the tw9903 driver within the Linux kernel. This vulnerability occurs in an error handling path of the tw9903probe function, where memory allocated for video for Linux 2 V4L2 control handlers is not properly released. This oversight can lead to a memory leak, potentially causin...
CVE-2026-43202
A flaw was found in the Linux kernel's fbdev: vt8500lcdfb module. This vulnerability, a memory leak, occurs because allocated memory is not properly freed when an error path is triggered. A local attacker could potentially exploit this to exhaust system resources, leading to a Denial of Service D...
CVE-2026-43135
A flaw was found in the Linux kernel's cx23885 media driver. Specifically, the sndcx23885hwparams function does not properly unmap resources when an error occurs. A local user could exploit this by repeatedly triggering the error path, leading to unreleased resources. This resource exhaustion can...
EUVD-2026-27661
In the Linux kernel, the following vulnerability has been resolved: fbdev: of: displaytiming: fix refcount leak in ofgetdisplaytimings ofparsephandle returns a devicenode with refcount incremented, which is stored in 'entry' and then copied to 'nativemode'. When the error paths at lines 184 or 19...
EUVD-2026-27778
In the Linux kernel, the following vulnerability has been resolved: media: i2c/tw9903: Fix potential memory leak in tw9903probe In one of the error paths in tw9903probe, the memory allocated in v4l2ctrlhandlerinit and v4l2ctrlnewstd is not freed. Fix that by calling v4l2ctrlhandlerfree on the...