CVE-2026-23431 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: spi: amlogic-spisg: Fix memory leak in aml_spisg_probe() In aml_spisg_probe(), ctlr is allocated by spi_alloc_target()/spi_alloc_host(), but fails to call spi_controller_put() in several error paths. This leads to a memory leak whenever the driver fails to probe after the initial allocation. Convert to use devm_spi_alloc_host()/devm_spi_alloc_target() to fix the memory leak.

PUBLISHED Reserved 2026-01-13 | Published 2026-04-03 | Updated 2026-05-11 | Assigner Linux

Product status

Default status

unaffected

cef9991e04aed3305c61c392e880f6e01a0c2ea4 (git) before bec21d97c968a4806939eb2946df49ea6c341bde

affected

cef9991e04aed3305c61c392e880f6e01a0c2ea4 (git) before 8e28a01b69f7ea8df7ceb15470cfe643b2828f4f

affected

cef9991e04aed3305c61c392e880f6e01a0c2ea4 (git) before b8db9552997924b750e727a625a30eaa4603bbb9

affected

Default status

affected

6.17

affected

Any version before 6.17

unaffected

6.18.20 (semver)

unaffected

6.19.10 (semver)

unaffected

7.0 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/bec21d97c968a4806939eb2946df49ea6c341bde

git.kernel.org/...c/8e28a01b69f7ea8df7ceb15470cfe643b2828f4f

git.kernel.org/...c/b8db9552997924b750e727a625a30eaa4603bbb9

cve.org (CVE-2026-23431)

nvd.nist.gov (CVE-2026-23431)

Download JSON

help @ threatint.eu