CVE-2026-23027

Published: Jan 31, 2026

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix kvm_device leak in kvm_pch_pic_destroy() In kvm_ioctl_create_device(), kvm_device has allocated memory, kvm_device->destroy() seems to be supposed to free its kvm_device struct, but kvm_pch_pic_destroy() is not currently doing this, that would lead to a memory leak. So, fix it.

Vendor	Product	Versions
Linux	Linux	affected `e785dfacf7e7fe94370fa0e8e3ff1bc8fe179831 - < fc53a66227af08d868face4b33fa8b2e1ba187ed` affected `e785dfacf7e7fe94370fa0e8e3ff1bc8fe179831 - < 1cf342a7c3adc5877837b53bbceb5cc9eff60bbf`
Linux	Linux	affected `6.13` unaffected `0 - < 6.13` unaffected `6.18.7 - <= 6.18.` unaffected `6.19 - <= `

References

https://git.kernel.org/stable/c/fc53a66227af08d868face4b33fa8b2e1ba187ed

https://git.kernel.org/stable/c/1cf342a7c3adc5877837b53bbceb5cc9eff60bbf

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-23027

Description

Affected Products

References