CVE-2026-23426

MEDIUM

drm/logicvc: Fix device node reference leak in logicvc_drm_config_parse()

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: drm/logicvc: Fix device node reference leak in logicvc_drm_config_parse() The logicvc_drm_config_parse() function calls of_get_child_by_name() to find the "layers" node but fails to release the reference, leading to a device node reference leak. Fix this by using the __free(device_node) cleanup attribute to automatic release the reference when the variable goes out of scope.

Scores

CVSS v3 5.5
EPSS 0.0011
EPSS Percentile 1.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published
Products (23)
linux/Kernel 6.0.0 - 6.1.167linux
linux/Kernel 6.13.0 - 6.18.17linux
linux/Kernel 6.19.0 - 6.19.7linux
linux/Kernel 6.2.0 - 6.6.130linux
linux/Kernel 6.7.0 - 6.12.77linux
Linux/Linux < 6.0
Linux/Linux 6.0
Linux/Linux 6.1.167 - 6.1.*
Linux/Linux 6.12.77 - 6.12.*
Linux/Linux 6.18.17 - 6.18.*
... and 13 more
Published Apr 03, 2026
Tracked Since Apr 03, 2026