CVE-2026-43246

MEDIUM

media: i2c/tw9906: Fix potential memory leak in tw9906_probe()

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: media: i2c/tw9906: Fix potential memory leak in tw9906_probe() In one of the error paths in tw9906_probe(), the memory allocated in v4l2_ctrl_handler_init() and v4l2_ctrl_new_std() is not freed. Fix that by calling v4l2_ctrl_handler_free() on the handler in that error path.

References (8)

Core 8

Core References

https://git.kernel.org/stable/c/e9a490937942f18205dac7b6b192975ef1369ae1

https://git.kernel.org/stable/c/9548a8bbf511a252a9848f96220c6b95c9a3b918

https://git.kernel.org/stable/c/0c33338514d8246280533a77091e6b6ee548c606

https://git.kernel.org/stable/c/ccb92def042a3636ed47f25a30bd553788e5191e

https://git.kernel.org/stable/c/fb09d8b80046216646f1a344410cfa9cfa6c6c7c

https://git.kernel.org/stable/c/377a7756914364d72550fc86ca0f404ef1d96141

https://git.kernel.org/stable/c/59420d5d9c46b084e21f9ea6ce79fc79ae9e414c

https://git.kernel.org/stable/c/cad237b6c875fbee5d353a2b289e98d240d17ec8

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (19)

Linux/Linux < 3.10

Linux/Linux 3.10

Linux/Linux 5.10.252 - 5.10.*

Linux/Linux 5.15.202 - 5.15.*

Linux/Linux 6.1.165 - 6.1.*

Linux/Linux 6.12.75 - 6.12.*

Linux/Linux 6.18.16 - 6.18.*

Linux/Linux 6.19.6 - 6.19.*

Linux/Linux 6.6.128 - 6.6.*

Linux/Linux 7.0

... and 9 more

Published May 06, 2026

Tracked Since May 06, 2026