CVE-2026-45922 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix memory leak in GET_DATA_DIRECT_SYSFS_PATH handler The UVERBS_HANDLER(MLX5_IB_METHOD_GET_DATA_DIRECT_SYSFS_PATH) function allocates memory for the device path using kobject_get_path(). If the length of the device path exceeds the output buffer length, the function returns -ENOSPC but does not free the allocated memory, resulting in a memory leak. Add a kfree() call to the error path to ensure the allocated memory is properly freed. Compile tested only. Issue found using a prototype static analysis tool and code review.

PUBLISHED Reserved 2026-05-13 | Published 2026-05-27 | Updated 2026-05-27 | Assigner Linux

Product status

Default status

unaffected

ec7ad6530909983c8736c80af46e3529ce7bab55 (git) before ee998cdbff6680891b0efd9d6ce53a388e5342c3

affected

ec7ad6530909983c8736c80af46e3529ce7bab55 (git) before b2bc649c18fbe8a7fd38d17266da3dcbfbcc44d2

affected

ec7ad6530909983c8736c80af46e3529ce7bab55 (git) before b3a10eca24fcfe913c0875e620f19596001bd6dc

affected

ec7ad6530909983c8736c80af46e3529ce7bab55 (git) before 9b9d253908478f504297ac283c514e5953ddafa6

affected

Default status

affected

6.12

affected

Any version before 6.12

unaffected

6.12.75 (semver)

unaffected

6.18.14 (semver)

unaffected

6.19.4 (semver)

unaffected

7.0 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/ee998cdbff6680891b0efd9d6ce53a388e5342c3

git.kernel.org/...c/b2bc649c18fbe8a7fd38d17266da3dcbfbcc44d2

git.kernel.org/...c/b3a10eca24fcfe913c0875e620f19596001bd6dc

git.kernel.org/...c/9b9d253908478f504297ac283c514e5953ddafa6

cve.org (CVE-2026-45922)

nvd.nist.gov (CVE-2026-45922)

Download JSON

help @ threatint.eu