CVE-2026-23176Missing Release of Memory after Effective Lifetime in Linux

7 documents6 sources
Severity
N/A
No vector
EPSS
0.1%
top 84.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
LinuxLinux KernelDebian Linux+1 more
Timeline
PublishedFeb 14

Description

In the Linux kernel, the following vulnerability has been resolved: platform/x86: toshiba_haps: Fix memory leaks in add/remove routines toshiba_haps_add() leaks the haps object allocated by it if it returns an error after allocating that object successfully. toshiba_haps_remove() does not free the object pointed to by toshiba_haps before clearing that pointer, so it becomes unreachable allocated memory. Address these memory leaks by using devm_kzalloc() for allocating the memory in question.

Affected Packages5 packages

Linuxlinux/linux_kernel3.17.05.10.250+5
Debianlinux/linux_kernel< 5.10.251-1+3
CVEListV5linux/linux23d0ba0c908ac10139f0351023c64198d7fc140917f37c4cdf42a9e4915216b9e130fc8baef4cc64+7
debiandebian/linux< linux 6.1.164-1 (bookworm)
debiandebian/linux-6.1< linux 6.1.164-1 (bookworm)

🔴Vulnerability Details

3
GHSA
GHSA-vm5x-8w9j-f2rm: In the Linux kernel, the following vulnerability has been resolved: platform/x86: toshiba_haps: Fix memory leaks in add/remove routines toshiba_haps2026-02-14
OSV
CVE-2026-23176: In the Linux kernel, the following vulnerability has been resolved: platform/x86: toshiba_haps: Fix memory leaks in add/remove routines toshiba_haps_a2026-02-14
OSV
platform/x86: toshiba_haps: Fix memory leaks in add/remove routines2026-02-14

📋Vendor Advisories

2
Red Hat
kernel: platform/x86: toshiba_haps: Fix memory leaks in add/remove routines2026-02-14
Debian
CVE-2026-23176: linux - In the Linux kernel, the following vulnerability has been resolved: platform/x8...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-23176 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-23176 — Linux vulnerability | cvebase