CVE-2026-23337
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
pinctrl: pinconf-generic: Fix memory leak in pinconf_generic_parse_dt_config()
In pinconf_generic_parse_dt_config(), if parse_dt_cfg() fails, it returns directly. This bypasses the cleanup logic and results in a memory leak of the cfg buffer.
Fix this by jumping to the out label on failure, ensuring kfree(cfg) is called before returning.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 90a18c512884adb49ddc2fb30e94594169aae808 < 63ee429780a5d43b5b4406c6128109b0f47cf2f1 | affected |
| Linux | Linux | 90a18c512884adb49ddc2fb30e94594169aae808 < 7a648d598cb8e8c62af3f0e020a25820a3f3a9a7 | affected |
| Linux | Linux | 6.19 | affected |
| Linux | Linux | 0 < 6.19 | unaffected |
| Linux | Linux | 6.19.7 <= 6.19.* | unaffected |
| Linux | Linux | 7.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/63ee429780a5d43b5b4406c6128109b0f47cf2f1
- https://git.kernel.org/stable/c/7a648d598cb8e8c62af3f0e020a25820a3f3a9a7
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.