CVE-2026-23260
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
regmap: maple: free entry on mas_store_gfp() failure
regcache_maple_write() allocates a new block ('entry') to merge adjacent ranges and then stores it with mas_store_gfp(). When mas_store_gfp() fails, the new 'entry' remains allocated and is never freed, leaking memory.
Free 'entry' on the failure path; on success continue freeing the replaced neighbor blocks ('lower', 'upper').
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | f033c26de5a5734625d2dd1dc196745fae186f1b < d61171cf097156030142643942c217759a9cc806 | affected |
| Linux | Linux | f033c26de5a5734625d2dd1dc196745fae186f1b < 811b45e2d795d955bb7fd9c816b40036f4fde350 | affected |
| Linux | Linux | f033c26de5a5734625d2dd1dc196745fae186f1b < f08f2d2907675926ac5657b25f86d921f269602a | affected |
| Linux | Linux | f033c26de5a5734625d2dd1dc196745fae186f1b < f3f380ce6b3d5c9805c7e0b3d5bc28d9ec41e2e8 | affected |
| Linux | Linux | 6.4 | affected |
| Linux | Linux | 0 < 6.4 | unaffected |
| Linux | Linux | 6.6.124 <= 6.6.* | unaffected |
| Linux | Linux | 6.12.70 <= 6.12.* | unaffected |
| Linux | Linux | 6.18.10 <= 6.18.* | unaffected |
| Linux | Linux | 6.19 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/d61171cf097156030142643942c217759a9cc806
- https://git.kernel.org/stable/c/811b45e2d795d955bb7fd9c816b40036f4fde350
- https://git.kernel.org/stable/c/f08f2d2907675926ac5657b25f86d921f269602a
- https://git.kernel.org/stable/c/f3f380ce6b3d5c9805c7e0b3d5bc28d9ec41e2e8
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.