CVE-2026-45948

MEDIUM EPSS 5.6%
Published May 27, 20261mo ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 27, 2026 1mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ext4: fix memory leak in ext4_ext_shift_extents() In ext4_ext_shift_extents(), if the extent is NULL in the while loop, the function returns immediately without releasing the path obtained via ext4_find_extent(), leading to a memory leak. Fix this by jumping to the out label to ensure the path is properly released.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
5.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 14

VendorProductVersionRange
linuxlinux_kernel*≥3.15.1  –  <5.10.252
linuxlinux_kernel*≥5.11  –  <5.15.202
linuxlinux_kernel*≥5.16  –  <6.1.165
linuxlinux_kernel*≥6.2  –  <6.6.128
linuxlinux_kernel*≥6.7  –  <6.12.75
linuxlinux_kernel*≥6.13  –  <6.18.14
linuxlinux_kernel*≥6.19  –  <6.19.4
linuxlinux_kernel3.15any
linuxlinux_kernel3.15any
linuxlinux_kernel3.15any
linuxlinux_kernel3.15any
linuxlinux_kernel3.15any
linuxlinux_kernel3.15any
linuxlinux_kernel3.15any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/12615ab4bfb69678e5d961b28bb70040299e51b1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1bce219ee5512cf179ba40cf114945a14a16e21f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2f4b1052246ca646bb17bfe0f53df2fdf9729b58
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4a79fde8db7eba7f1128d971ceba4e3c9ac84aec
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7e807cb8603b7664fa630a696cd891d9a03c248d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/afc5e61e1a07b2b833bd72cbee36ecce9cd901e2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bd7b52557e4a3ccd7595fdb3a585f1257de57935
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ca81109d4a8f192dc1cbad4a1ee25246363c2833
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/12615ab4bfb69678e5d961b28bb70040299e51b1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1bce219ee5512cf179ba40cf114945a14a16e21f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2f4b1052246ca646bb17bfe0f53df2fdf9729b58
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4a79fde8db7eba7f1128d971ceba4e3c9ac84aec
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7e807cb8603b7664fa630a696cd891d9a03c248d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/afc5e61e1a07b2b833bd72cbee36ecce9cd901e2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bd7b52557e4a3ccd7595fdb3a585f1257de57935
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ca81109d4a8f192dc1cbad4a1ee25246363c2833
    Patch