CVE-2026-45950

MEDIUM

crypto: starfive - Fix memory leak in starfive_aes_aead_do_one_req()

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: crypto: starfive - Fix memory leak in starfive_aes_aead_do_one_req() The starfive_aes_aead_do_one_req() function allocates rctx->adata with kzalloc() but fails to free it if sg_copy_to_buffer() or starfive_aes_hw_init() fails, which lead to memory leaks. Since rctx->adata is unconditionally freed after the write_adata operations, ensure consistent cleanup by freeing the allocation in these earlier error paths as well. Compile tested only. Issue found using a prototype static analysis tool and code review.

References (4)

Core 4

Core References

https://git.kernel.org/stable/c/38d80307decc1132626a30e2a62af734630ecca5

https://git.kernel.org/stable/c/4869d0e4e48a5301b267d359b2561c4080791a55

https://git.kernel.org/stable/c/5f2c964a058581e1557c32d5de651c67a80438a7

https://git.kernel.org/stable/c/ccb679fdae2e62ed92fd9acb25ed809c0226fcc6

Scores

CVSS v3 5.5

EPSS 0.0017

EPSS Percentile 6.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (11)

Linux/Linux < 6.10

Linux/Linux 6.10

Linux/Linux 6.12.75 - 6.12.*

Linux/Linux 6.18.14 - 6.18.*

Linux/Linux 6.19.4 - 6.19.*

Linux/Linux 7.0

Linux/Linux 7467147ef9bf42d1ea5b3314c7a05cd542b3518e - 38d80307decc1132626a30e2a62af734630ecca5

Linux/Linux 7467147ef9bf42d1ea5b3314c7a05cd542b3518e - 4869d0e4e48a5301b267d359b2561c4080791a55

Linux/Linux 7467147ef9bf42d1ea5b3314c7a05cd542b3518e - 5f2c964a058581e1557c32d5de651c67a80438a7

Linux/Linux 7467147ef9bf42d1ea5b3314c7a05cd542b3518e - ccb679fdae2e62ed92fd9acb25ed809c0226fcc6

... and 1 more

Published May 27, 2026

Tracked Since May 27, 2026