CVE-2026-23421

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/xe/configfs: Free ctx_restore_mid_bb in release

ctx_restore_mid_bb memory is allocated in wa_bb_store(), but xe_config_device_release() only frees ctx_restore_post_bb.

Free ctx_restore_mid_bb[0].cs as well to avoid leaking the allocation when the configfs device is removed.

(cherry picked from commit a235e7d0098337c3f2d1e8f3610c719a589e115f)

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxb30d5de3d40c3fa642079bac0d91f17091c5f877 < 7f971dfd48983074adc7bbcea3ee95ce7aad47cbaffected
LinuxLinuxb30d5de3d40c3fa642079bac0d91f17091c5f877 < 3557359ea3df32430ea7c30f7a708ca9a91d7e0eaffected
LinuxLinuxb30d5de3d40c3fa642079bac0d91f17091c5f877 < e377182f0266f46f02d01838e6bde67b9dac0d66affected
LinuxLinux6.18affected
LinuxLinux0 < 6.18unaffected
LinuxLinux6.18.17 <= 6.18.*unaffected
LinuxLinux6.19.7 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References