CVE-2026-45997: In the Linux kernel, the following vulnerability has been resolved: scsi: sd: fix missing put_disk() when device_add(&disk_dev) fails If…

medium5.5

In the Linux kernel, the following vulnerability has been resolved: scsi: sd: fix missing put_disk() when device_add(&disk_dev) fails If device_add(&sdkp->disk_dev) fails, put_device() runs scsi_disk_release(), which frees the scsi_disk but leaves the gendisk referenced. The device_add_disk() error path in sd_probe() calls put_disk(gd); call put_disk(gd) here to mirror that cleanup.

Affected

22 ranges

Vendor	Product	Version range	Fixed in
linux	linux	—	—
linux	linux	—	—
linux	linux	—	—
linux	linux	—	—
linux	linux	—	—
linux	linux	—	—
linux	linux	—	—
linux	linux	—	—
linux	linux	>= 265dfe8ebbabae7959060bd1c3f75c2473b697ed < 2c2c14b7dfccad8c5a28802849e40c21252e4c28	2c2c14b7dfccad8c5a28802849e40c21252e4c28
linux	linux	>= 265dfe8ebbabae7959060bd1c3f75c2473b697ed < 262152ec37101f9dc524743ccdbd6c7641d14573	262152ec37101f9dc524743ccdbd6c7641d14573
linux	linux	>= 265dfe8ebbabae7959060bd1c3f75c2473b697ed < b64b4f499801b12d0e2785447e4df6c164c608a9	b64b4f499801b12d0e2785447e4df6c164c608a9
linux	linux	>= 265dfe8ebbabae7959060bd1c3f75c2473b697ed < 13e550fbfccdb311e76ec96892dfe35f0dba0657	13e550fbfccdb311e76ec96892dfe35f0dba0657
linux	linux	>= 265dfe8ebbabae7959060bd1c3f75c2473b697ed < a95d38c5701431bfc826e7b18acc0785919d5c88	a95d38c5701431bfc826e7b18acc0785919d5c88
linux	linux	>= 265dfe8ebbabae7959060bd1c3f75c2473b697ed < 1e111c4b3a726df1254670a5cc4868cedb946d37	1e111c4b3a726df1254670a5cc4868cedb946d37
linux	linux	>= 4.14.250 < 4.15	4.15
linux	linux	>= 4.19.210 < 4.20	4.20
linux	linux	>= 4.4.288 < 4.5	4.5
linux	linux	>= 4.9.286 < 4.10	4.10
linux	linux	>= 5.10.72 < 5.11	5.11
linux	linux	>= 5.14.11 < 5.15	5.15
linux	linux	>= 5.4.152 < 5.5	5.5
linux	linux_kernel	—	—