CVE-2026-23091

MEDIUM EPSS 2.4%
Published Feb 4, 20264mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 4, 2026 4mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: intel_th: fix device leak on output open() Make sure to drop the reference taken when looking up the th device during output device open() on errors and on close(). Note that a recent commit fixed the leak in a couple of open() error paths but not all of them, and the reference is still leaking on successful open().

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
2.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 12

VendorProductVersionRange
linuxlinux_kernel*≥4.4  –  <5.10.249
linuxlinux_kernel*≥5.11  –  <5.15.199
linuxlinux_kernel*≥5.16  –  <6.1.162
linuxlinux_kernel*≥6.2  –  <6.6.122
linuxlinux_kernel*≥6.7  –  <6.12.68
linuxlinux_kernel*≥6.13  –  <6.18.8
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any

References 7

  • git.kernel.org https://git.kernel.org/stable/c/0fca16c5591534cc1fec8b6181277ee3a3d0f26c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/64015cbf06e8bb75b81ae95b997e847b55280f7f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/95fc36a234da24bbc5f476f8104a5a15f99ed3e3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/af4b9467296b9a16ebc008147238070236982b6d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b71e64ef7ff9443835d1333e3e80ab1e49e5209f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bf7785434b5d05d940d936b78925080950bd54dd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f9b059bda4276f2bb72cb98ec7875a747f042ea2
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0fca16c5591534cc1fec8b6181277ee3a3d0f26c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/64015cbf06e8bb75b81ae95b997e847b55280f7f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/95fc36a234da24bbc5f476f8104a5a15f99ed3e3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/af4b9467296b9a16ebc008147238070236982b6d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b71e64ef7ff9443835d1333e3e80ab1e49e5209f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bf7785434b5d05d940d936b78925080950bd54dd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f9b059bda4276f2bb72cb98ec7875a747f042ea2
    Patch