CVE-2026-23160

Medium CVSS: 5.5

In the Linux kernel, the following vulnerability has been resolved:

octeon_ep: Fix memory leak in octep_device_setup()

In octep_device_setup(), if octep_ctrl_net_init() fails, the function
returns directly without unmapping the mapped resources and freeing the
allocated configuration memory.

Fix this by jumping to the unsupported_dev label, which performs the
necessary cleanup. This aligns with the error handling logic of other
paths in this function.

Compile tested only. Issue found using a prototype static analysis tool
and code review.

Vendor

Linux

Product

Linux Kernel

CWE

CWE-401

Yayın Tarihi

2026-02-14 16:15:56

Güncelleme

2026-03-18 14:12:40

Source Identifier

416baaa9-dc9f-4396-8d5f-8c081fb06d67

KEV Date Added

Kategoriler

CWE-401 Linux Kernel MEDIUM Linux 2026

Referanslar

https://git.kernel.org/stable/c/5058d3f8f17202e673f90af1446252322bd0850f https://git.kernel.org/stable/c/8016dc5ee19a77678c264f8ba368b1e873fa705b https://git.kernel.org/stable/c/d753f3c3f9d7a6e6dbb4d3a97b73007d71624551 https://git.kernel.org/stable/c/fdfd28e13c244d7c3345e74f339fd1b67605b694

Benzer Kayıtlar

Medium

CVE-2026-23238

In the Linux kernel, the following vulnerability has been resolved: romfs: check sb_set_blocksize() return value romfs…

Medium

CVE-2026-23237

In the Linux kernel, the following vulnerability has been resolved: platform/x86: classmate-laptop: Add missing NULL po…

High

CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kerne…

High

CVE-2026-23235

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix out-of-bounds access in sysfs attribute r…

High

CVE-2026-23234

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fs_write_end_io() As s…

High

CVE-2026-23233

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid mapping wrong physical block for…