CVE-2026-45922

NONE EPSS 5.0%
Published May 27, 20261mo ago · Modified Jun 17, 20262w ago
Find Similar
Published May 27, 2026 1mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix memory leak in GET_DATA_DIRECT_SYSFS_PATH handler The UVERBS_HANDLER(MLX5_IB_METHOD_GET_DATA_DIRECT_SYSFS_PATH) function allocates memory for the device path using kobject_get_path(). If the length of the device path exceeds the output buffer length, the function returns -ENOSPC but does not free the allocated memory, resulting in a memory leak. Add a kfree() call to the error path to ensure the allocated memory is properly freed. Compile tested only. Issue found using a prototype static analysis tool and code review.

Threat Intelligence

EPSS Exploit Probability
5.0% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 4

  • git.kernel.org https://git.kernel.org/stable/c/9b9d253908478f504297ac283c514e5953ddafa6
  • git.kernel.org https://git.kernel.org/stable/c/b2bc649c18fbe8a7fd38d17266da3dcbfbcc44d2
  • git.kernel.org https://git.kernel.org/stable/c/b3a10eca24fcfe913c0875e620f19596001bd6dc
  • git.kernel.org https://git.kernel.org/stable/c/ee998cdbff6680891b0efd9d6ce53a388e5342c3

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.