CVE-2026-23023

Summary

In the Linux kernel, the following vulnerability has been resolved:

idpf: fix memory leak in idpf_vport_rel()

Free vport->rx_ptype_lkup in idpf_vport_rel() to avoid leaking memory during a reset. Reported by kmemleak:

unreferenced object 0xff450acac838a000 (size 4096): comm "kworker/u258:5", pid 7732, jiffies 4296830044 hex dump (first 32 bytes): 00 00 00 00 00 10 00 00 00 10 00 00 00 00 00 00 ……………. 00 00 00 00 00 00 00 00 00 10 00 00 00 00 00 00 ……………. backtrace (crc 3da81902): __kmalloc_cache_noprof+0x469/0x7a0 idpf_send_get_rx_ptype_msg+0x90/0x570 [idpf] idpf_init_task+0x1ec/0x8d0 [idpf] process_one_work+0x226/0x6d0 worker_thread+0x19e/0x340 kthread+0x10f/0x250 ret_from_fork+0x251/0x2b0 ret_from_fork_asm+0x1a/0x30

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0fe45467a1041ea3657a7fa3a791c84c104fbd34 < a4212d6732e3f674c6cc7d0b642f276d827e8f94affected
LinuxLinux0fe45467a1041ea3657a7fa3a791c84c104fbd34 < ec602a2a4071eb956d656ba968c58fee09f0622daffected
LinuxLinux0fe45467a1041ea3657a7fa3a791c84c104fbd34 < f6242b354605faff263ca45882b148200915a3f6affected
LinuxLinux6.7affected
LinuxLinux0 < 6.7unaffected
LinuxLinux6.12.66 <= 6.12.*unaffected
LinuxLinux6.18.6 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

References