CVE-2026-23426

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/logicvc: Fix device node reference leak in logicvc_drm_config_parse()

The logicvc_drm_config_parse() function calls of_get_child_by_name() to find the "layers" node but fails to release the reference, leading to a device node reference leak.

Fix this by using the __free(device_node) cleanup attribute to automatic release the reference when the variable goes out of scope.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxefeeaefe9be56e8ae5e5b4e9ff6d2275ec977ec5 < b88f49910be147b7974098b9172b0d3873142d6aaffected
LinuxLinuxefeeaefe9be56e8ae5e5b4e9ff6d2275ec977ec5 < 0bd326dffd9e103335d77d9c31275c0d5a7979ebaffected
LinuxLinuxefeeaefe9be56e8ae5e5b4e9ff6d2275ec977ec5 < 871630255ecd2d9b64ad1d75a7dfc0567d7d9989affected
LinuxLinuxefeeaefe9be56e8ae5e5b4e9ff6d2275ec977ec5 < f8a6eba20edb938166b26e133cc61306e1bc6de9affected
LinuxLinuxefeeaefe9be56e8ae5e5b4e9ff6d2275ec977ec5 < 78e91e49d28e05ccaa6b445bafb5e367d57c9583affected
LinuxLinuxefeeaefe9be56e8ae5e5b4e9ff6d2275ec977ec5 < fef0e649f8b42bdffe4a916dd46e1b1e9ad2f207affected
LinuxLinux6.0affected
LinuxLinux0 < 6.0unaffected
LinuxLinux6.1.167 <= 6.1.*unaffected
LinuxLinux6.6.130 <= 6.6.*unaffected
LinuxLinux6.12.77 <= 6.12.*unaffected
LinuxLinux6.18.17 <= 6.18.*unaffected
LinuxLinux6.19.7 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References