CVE-2026-23421
MEDIUMdrm/xe/configfs: Free ctx_restore_mid_bb in release
Title source: cnaDescription
In the Linux kernel, the following vulnerability has been resolved: drm/xe/configfs: Free ctx_restore_mid_bb in release ctx_restore_mid_bb memory is allocated in wa_bb_store(), but xe_config_device_release() only frees ctx_restore_post_bb. Free ctx_restore_mid_bb[0].cs as well to avoid leaking the allocation when the configfs device is removed. (cherry picked from commit a235e7d0098337c3f2d1e8f3610c719a589e115f)
Scores
CVSS v3
5.5
EPSS
0.0011
EPSS Percentile
1.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
Status
published
Products (14)
linux/Kernel
6.18.0 - 6.18.17linux
linux/Kernel
6.19.0 - 6.19.7linux
Linux/Linux
< 6.18
Linux/Linux
6.18
Linux/Linux
6.18.17 - 6.18.*
Linux/Linux
6.19.7 - 6.19.*
Linux/Linux
7.0
Linux/Linux
7.0-rc3
Linux/Linux
b30d5de3d40c3fa642079bac0d91f17091c5f877 - 3557359ea3df32430ea7c30f7a708ca9a91d7e0e
Linux/Linux
b30d5de3d40c3fa642079bac0d91f17091c5f877 - 7f971dfd48983074adc7bbcea3ee95ce7aad47cb
... and 4 more
Published
Apr 03, 2026
Tracked Since
Apr 03, 2026