5.5
CVE-2026-43396
- EPSS 0.12%
- Veröffentlicht 08.05.2026 14:21:39
- Zuletzt bearbeitet 21.05.2026 19:32:28
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
drm/xe/sync: Fix user fence leak on alloc failure
In the Linux kernel, the following vulnerability has been resolved: drm/xe/sync: Fix user fence leak on alloc failure When dma_fence_chain_alloc() fails, properly release the user fence reference to prevent a memory leak. (cherry picked from commit a5d5634cde48a9fcd68c8504aa07f89f175074a0)
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.18.1 < 6.18.20
Linux ≫ Linux Kernel Version >= 6.19 < 6.19.9
Linux ≫ Linux Kernel Version6.18 Update-
Linux ≫ Linux Kernel Version6.18 Updaterc5
Linux ≫ Linux Kernel Version6.18 Updaterc6
Linux ≫ Linux Kernel Version6.18 Updaterc7
Linux ≫ Linux Kernel Version7.0 Updaterc1
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.12% | 0.022 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-401 Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
https://git.kernel.org/stable/c/05edc78eb4699e8e000a62aaa8dace50a17e19e3
https://git.kernel.org/stable/c/f8f90b33934b307f6e4599b9fae38aa1ee5441a7
https://git.kernel.org/stable/c/0879c3f04f67e2a1677c25dcc24669ce21eb6a6c