CVE-2026-31645

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: lan966x: fix page pool leak in error paths

lan966x_fdma_rx_alloc() creates a page pool but does not destroy it if the subsequent fdma_alloc_coherent() call fails, leaking the pool.

Similarly, lan966x_fdma_init() frees the coherent DMA memory when lan966x_fdma_tx_alloc() fails but does not destroy the page pool that was successfully created by lan966x_fdma_rx_alloc(), leaking it.

Add the missing page_pool_destroy() calls in both error paths.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux11871aba19748b3387e83a2db6360aa7119e9a1a < 73e940c4249dc5ec6422d1fae535d192fb125955affected
LinuxLinux11871aba19748b3387e83a2db6360aa7119e9a1a < 22e1ee9f22b5c3bb702bb6d4167d770002a85b2baffected
LinuxLinux11871aba19748b3387e83a2db6360aa7119e9a1a < 4941e234cfd67ac911fb259642b453f9f76aac41affected
LinuxLinux11871aba19748b3387e83a2db6360aa7119e9a1a < 076344a6ad9d1308faaed1402fdcfdda68b604abaffected
LinuxLinux6.2affected
LinuxLinux0 < 6.2unaffected
LinuxLinux6.12.82 <= 6.12.*unaffected
LinuxLinux6.18.23 <= 6.18.*unaffected
LinuxLinux6.19.13 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References