CVE-2026-23026

Summary

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: qcom: gpi: Fix memory leak in gpi_peripheral_config()

Fix a memory leak in gpi_peripheral_config() where the original memory pointed to by gchan->config could be lost if krealloc() fails.

The issue occurs when:

  1. gchan->config points to previously allocated memory
  2. krealloc() fails and returns NULL
  3. The function directly assigns NULL to gchan->config, losing the reference to the original memory
  4. The original memory becomes unreachable and cannot be freed

Fix this by using a temporary variable to hold the krealloc() result and only updating gchan->config when the allocation succeeds.

Found via static analysis and code review.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux5d0c3533a19f48e5e7e73806a3e4b29cd4364130 < 4532f18e4ab36def1f55cd936d0fc002b2ce34c2affected
LinuxLinux5d0c3533a19f48e5e7e73806a3e4b29cd4364130 < 694ab1f6f16cb69f7c5ef2452b22ba7b00a3c7c7affected
LinuxLinux5d0c3533a19f48e5e7e73806a3e4b29cd4364130 < 6bf4ef078fd11910988889a6c0b3698d2e0c89afaffected
LinuxLinux5d0c3533a19f48e5e7e73806a3e4b29cd4364130 < 01b1d781394fc9b83015e3a3cd46b17bda842bd8affected
LinuxLinux5d0c3533a19f48e5e7e73806a3e4b29cd4364130 < 55a67ba5ac4cebfd54cc8305d4d57a0f1dfe6a85affected
LinuxLinux5d0c3533a19f48e5e7e73806a3e4b29cd4364130 < 3f747004bbd641131d9396d87b5d2d3d1e182728affected
LinuxLinux5.11affected
LinuxLinux0 < 5.11unaffected
LinuxLinux5.15.199 <= 5.15.*unaffected
LinuxLinux6.1.162 <= 6.1.*unaffected
LinuxLinux6.6.122 <= 6.6.*unaffected
LinuxLinux6.12.67 <= 6.12.*unaffected
LinuxLinux6.18.7 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

ADP Enrichment

Additional References

References