5.5
CVE-2026-45976
- EPSS 0.12%
- Veröffentlicht 27.05.2026 12:18:34
- Zuletzt bearbeitet 16.06.2026 02:40:53
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
drm/amdgpu: Fix memory leak in amdgpu_ras_init()
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix memory leak in amdgpu_ras_init() When amdgpu_nbio_ras_sw_init() fails in amdgpu_ras_init(), the function returns directly without freeing the allocated con structure, leading to a memory leak. Fix this by jumping to the release_con label to properly clean up the allocated memory before returning the error code. Compile tested only. Issue found using a prototype static analysis tool and code review.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 6.4 < 6.6.128
Linux ≫ Linux Kernel Version >= 6.7 < 6.12.75
Linux ≫ Linux Kernel Version >= 6.13 < 6.18.14
Linux ≫ Linux Kernel Version >= 6.19 < 6.19.4
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.12% | 0.023 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-401 Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
https://git.kernel.org/stable/c/f8a5426652bdadd4a5cb48326d48abbdfebe8153
https://git.kernel.org/stable/c/c11cd77a18115d2cd3f4b6915c4a537b6042f950
https://git.kernel.org/stable/c/2fef8c2ac67e7c1b0409d23653300b134c63e54c
https://git.kernel.org/stable/c/3f43e7812b30d6b2e850218f9bb1dae60727fcef
https://git.kernel.org/stable/c/ee41e5b63c8210525c936ee637a2c8d185ce873c