5.5

CVE-2026-43157

octeontx2-af: CGX: fix bitmap leaks

In the Linux kernel, the following vulnerability has been resolved:

octeontx2-af: CGX: fix bitmap leaks

The RX/TX flow-control bitmaps (rx_fc_pfvf_bmap and tx_fc_pfvf_bmap)
are allocated by cgx_lmac_init() but never freed in cgx_lmac_exit().
Unbinding and rebinding the driver therefore triggers kmemleak:

    unreferenced object (size 16):
        backtrace:
          rvu_alloc_bitmap
          cgx_probe

Free both bitmaps during teardown.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 5.18 < 6.1.165
LinuxLinux Kernel Version >= 6.2 < 6.6.128
LinuxLinux Kernel Version >= 6.7 < 6.12.75
LinuxLinux Kernel Version >= 6.13 < 6.18.16
LinuxLinux Kernel Version >= 6.19 < 6.19.6
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.13% 0.028
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/ad8a13a45c5c24d0d32de9a1c3fd58498a675ece
Patch
https://git.kernel.org/stable/c/013ac469596a0b8671e62d89c89ae0bd46bbe667
Patch
https://git.kernel.org/stable/c/ccef79af58b43787c25710c9da96651c6ddfe50f
Patch
https://git.kernel.org/stable/c/6d389382ee655128056fbdab86baad8495ffbf33
Patch
https://git.kernel.org/stable/c/ccca14bbdcc25829d355b9f4d3249f43dadb71c1
Patch
https://git.kernel.org/stable/c/3def995c4ede842adf509c410e92d09a0cedc965
Patch