Home

Description

In the Linux kernel, the following vulnerability has been resolved: net: liquidio: Fix off-by-one error in VF setup_nic_devices() cleanup In setup_nic_devices(), the initialization loop jumps to the label setup_nic_dev_free on failure. The current cleanup loop while(i--) skip the failing index i, causing a memory leak. Fix this by changing the loop to iterate from the current index i down to 0. Compile tested only. Issue found using code review.

PUBLISHED Reserved 2026-01-13 | Published 2026-03-18 | Updated 2026-03-18 | Assigner Linux

Product status

Default status
unaffected

846b46873eeb3baf40f7e6d8fe8f98aec95e7727 (git) before bd680e56e316be92c01568be98d85d7a6c9bd92c
affected

846b46873eeb3baf40f7e6d8fe8f98aec95e7727 (git) before 01fbca1e93ec3f39f76c31a8f9afa32ce00da48a
affected

846b46873eeb3baf40f7e6d8fe8f98aec95e7727 (git) before 71a56b89203ec7e5670d94a61a9b4ae617eca804
affected

846b46873eeb3baf40f7e6d8fe8f98aec95e7727 (git) before 3bf519e39b51cb08a93c0599870b35a23db1031e
affected

846b46873eeb3baf40f7e6d8fe8f98aec95e7727 (git) before 52b19b3a22306fe452ec9e8ff96063f4bfb77b99
affected

846b46873eeb3baf40f7e6d8fe8f98aec95e7727 (git) before 4640fa5ad5e1a0dbd1c2d22323b7d70a8107dcfd
affected

846b46873eeb3baf40f7e6d8fe8f98aec95e7727 (git) before 6cbba46934aefdfb5d171e0a95aec06c24f7ca30
affected

Default status
affected

4.10
affected

Any version before 4.10
unaffected

5.10.250 (semver)
unaffected

5.15.200 (semver)
unaffected

6.1.163 (semver)
unaffected

6.6.124 (semver)
unaffected

6.12.70 (semver)
unaffected

6.18.10 (semver)
unaffected

6.19 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/bd680e56e316be92c01568be98d85d7a6c9bd92c

git.kernel.org/...c/01fbca1e93ec3f39f76c31a8f9afa32ce00da48a

git.kernel.org/...c/71a56b89203ec7e5670d94a61a9b4ae617eca804

git.kernel.org/...c/3bf519e39b51cb08a93c0599870b35a23db1031e

git.kernel.org/...c/52b19b3a22306fe452ec9e8ff96063f4bfb77b99

git.kernel.org/...c/4640fa5ad5e1a0dbd1c2d22323b7d70a8107dcfd

git.kernel.org/...c/6cbba46934aefdfb5d171e0a95aec06c24f7ca30

cve.org (CVE-2026-23256)

nvd.nist.gov (CVE-2026-23256)

Download JSON