CVE-2026-43162
MEDIUM EPSS 2.8%
Published May 6, 20261mo ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Published May 6, 2026 1mo ago
Last Modified Jun 17, 2026 2w ago
Description
In the Linux kernel, the following vulnerability has been resolved: media: tegra-video: Fix memory leak in __tegra_channel_try_format() The state object allocated by __v4l2_subdev_state_alloc() must be freed with __v4l2_subdev_state_free() when it is no longer needed. In __tegra_channel_try_format(), two error paths return directly after v4l2_subdev_call() fails, without freeing the allocated 'sd_state' object. This violates the requirement and causes a memory leak. Fix this by introducing a cleanup label and using goto statements in the error paths to ensure that __v4l2_subdev_state_free() is always called before the function returns.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
2.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-401
Affected Products 5
References 6
- git.kernel.org https://git.kernel.org/stable/c/2dff8966a3a889dd9d248a7e15d963b4097efcc5
- git.kernel.org https://git.kernel.org/stable/c/3ca2f09061736e72ef25eec2597d00f7f44094d3
- git.kernel.org https://git.kernel.org/stable/c/43e5302d22334f1183dec3e0d5d8007eefe2817c
- git.kernel.org https://git.kernel.org/stable/c/6c6f419fa9c44a4b7149b0292e01bff47308ba14
- git.kernel.org https://git.kernel.org/stable/c/ca921be7a1174d5d58b28f84b683c2c0079f18c5
- git.kernel.org https://git.kernel.org/stable/c/d92e9a18f97a1d19d4c2ff81dcfbe43591f75b5a
Remediation
- git.kernel.org https://git.kernel.org/stable/c/2dff8966a3a889dd9d248a7e15d963b4097efcc5
- git.kernel.org https://git.kernel.org/stable/c/3ca2f09061736e72ef25eec2597d00f7f44094d3
- git.kernel.org https://git.kernel.org/stable/c/43e5302d22334f1183dec3e0d5d8007eefe2817c
- git.kernel.org https://git.kernel.org/stable/c/6c6f419fa9c44a4b7149b0292e01bff47308ba14
- git.kernel.org https://git.kernel.org/stable/c/ca921be7a1174d5d58b28f84b683c2c0079f18c5
- git.kernel.org https://git.kernel.org/stable/c/d92e9a18f97a1d19d4c2ff81dcfbe43591f75b5a