CVE-2026-23028

Summary

In the Linux kernel, the following vulnerability has been resolved:

LoongArch: KVM: Fix kvm_device leak in kvm_ipi_destroy()

In kvm_ioctl_create_device(), kvm_device has allocated memory, kvm_device->destroy() seems to be supposed to free its kvm_device struct, but kvm_ipi_destroy() is not currently doing this, that would lead to a memory leak.

So, fix it.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxc532de5a67a70f8533d495f8f2aaa9a0491c3ad0 < 5defcc2f9c22e6e09b5be68234ad10f4ba0292b7affected
LinuxLinuxc532de5a67a70f8533d495f8f2aaa9a0491c3ad0 < 0bf58cb7288a4d3de6d8ecbb3a65928a9362bf21affected
LinuxLinux6.13affected
LinuxLinux0 < 6.13unaffected
LinuxLinux6.18.7 <= 6.18.*unaffected
LinuxLinux6.19 <= *unaffected

Weaknesses

References