CVE-2026-23030

Published: Jan 31, 2026

Modified: Jun 2, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: phy: rockchip: inno-usb2: Fix a double free bug in rockchip_usb2phy_probe() The for_each_available_child_of_node() calls of_node_put() to release child_np in each success loop. After breaking from the loop with the child_np has been released, the code will jump to the put_child label and will call the of_node_put() again if the devm_request_threaded_irq() fails. These cause a double free bug. Fix by returning directly to avoid the duplicate of_node_put().

Vendor	Product	Versions
Linux	Linux	affected `ed2b5a8e6b98d042b323afbe177a5dc618921b31 - < b97b2c9808c9a97e0ce30216fa12096d8b0eaa75` affected `ed2b5a8e6b98d042b323afbe177a5dc618921b31 - < ebae26dd15140b840cf65be5e1c0daee949ba70b` affected `ed2b5a8e6b98d042b323afbe177a5dc618921b31 - < 027d42b97e6eb827c3438ebc09bab7efaee9270d` affected `ed2b5a8e6b98d042b323afbe177a5dc618921b31 - < efe92ee7a111fe0f4d75f3ed6b7e3f86322279d5` affected `ed2b5a8e6b98d042b323afbe177a5dc618921b31 - < e07dea3de508cd6950c937cec42de7603190e1ca`
Linux	Linux	affected `5.17` unaffected `0 - < 5.17` unaffected `6.1.162 - <= 6.1.` unaffected `6.6.122 - <= 6.6.` unaffected `6.12.67 - <= 6.12.*` +2 more versions

References

https://git.kernel.org/stable/c/b97b2c9808c9a97e0ce30216fa12096d8b0eaa75

https://git.kernel.org/stable/c/ebae26dd15140b840cf65be5e1c0daee949ba70b

https://git.kernel.org/stable/c/027d42b97e6eb827c3438ebc09bab7efaee9270d

https://git.kernel.org/stable/c/efe92ee7a111fe0f4d75f3ed6b7e3f86322279d5

https://git.kernel.org/stable/c/e07dea3de508cd6950c937cec42de7603190e1ca

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-23030

Description

Affected Products

References