CVE-2026-23170

MEDIUM

Linux Kernel Use-After-Free in DRM i.MX TVE DDC Device Reference

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/imx/tve: fix probe device leak Make sure to drop the reference taken to the DDC device during probe on probe failure (e.g. probe deferral) and on driver unbind.

References (7)

Core 7

Core References

Patch

https://git.kernel.org/stable/c/f212652982c6725986cfa42fbf10d1dfa92c010e

Patch

https://git.kernel.org/stable/c/52755c5680ce333b33d0750a200fbc99420ed2b2

Patch

https://git.kernel.org/stable/c/4aaff8f6ab38f81e00ab8aa1fcfb7eb20cd87ba1

Patch

https://git.kernel.org/stable/c/9a15d3fdc22d48f597792aee0cf1bf0947fc62e6

Patch

https://git.kernel.org/stable/c/77365382585b40559d63538d09e26e4b2af28fbc

Patch

https://git.kernel.org/stable/c/ca68745e820ecd210e3ab018497c9e6b69025c4b

Patch

https://git.kernel.org/stable/c/e535c23513c63f02f67e3e09e0787907029efeaf

Scores

CVSS v3 5.5

EPSS 0.0011

EPSS Percentile 1.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (24)

linux/Kernel 3.10.0 - 5.10.249linux

linux/Kernel 5.11.0 - 5.15.199linux

linux/Kernel 5.16.0 - 6.1.162linux

linux/Kernel 6.13.0 - 6.18.9linux

linux/Kernel 6.2.0 - 6.6.123linux

linux/Kernel 6.7.0 - 6.12.69linux

Linux/Linux < 3.10

Linux/Linux 3.10

Linux/Linux 5.10.249 - 5.10.*

Linux/Linux 5.15.199 - 5.15.*

... and 14 more

Published Feb 14, 2026

Tracked Since Feb 18, 2026