CVE-2026-43105 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix memory leak of BO array in hang state The hang state's BO array is allocated separately with kzalloc() in vc4_save_hang_state() but never freed in vc4_free_hang_state(). Add the missing kfree() for the BO array before freeing the hang state struct.

PUBLISHED Reserved 2026-05-01 | Published 2026-05-06 | Updated 2026-05-06 | Assigner Linux

Product status

Default status

unaffected

214613656b5179f0daab6e0a080814b5100d45f0 (git) before a812008fe3a0aebb778d277b35717f64e23d0302

affected

214613656b5179f0daab6e0a080814b5100d45f0 (git) before 0d3c014a84396a147705f523a8fd6fc873e76502

affected

214613656b5179f0daab6e0a080814b5100d45f0 (git) before 421cea4f71f7cf65abaae878562ee4aa2b684628

affected

214613656b5179f0daab6e0a080814b5100d45f0 (git) before b8138567c4a80fd76a647849ebd4284996cf4b17

affected

214613656b5179f0daab6e0a080814b5100d45f0 (git) before f4dfd6847b3e5d24e336bca6057485116d17aea4

affected

Default status

affected

4.5

affected

Any version before 4.5

unaffected

6.6.136 (semver)

unaffected

6.12.83 (semver)

unaffected

6.18.24 (semver)

unaffected

6.19.14 (semver)

unaffected

7.0 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/a812008fe3a0aebb778d277b35717f64e23d0302

git.kernel.org/...c/0d3c014a84396a147705f523a8fd6fc873e76502

git.kernel.org/...c/421cea4f71f7cf65abaae878562ee4aa2b684628

git.kernel.org/...c/b8138567c4a80fd76a647849ebd4284996cf4b17

git.kernel.org/...c/f4dfd6847b3e5d24e336bca6057485116d17aea4

cve.org (CVE-2026-43105)

nvd.nist.gov (CVE-2026-43105)

Download JSON

help @ threatint.eu