CVE-2026-23464

Published: Apr 3, 2026

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: soc: microchip: mpfs: Fix memory leak in mpfs_sys_controller_probe() In mpfs_sys_controller_probe(), if of_get_mtd_device_by_node() fails, the function returns immediately without freeing the allocated memory for sys_controller, leading to a memory leak. Fix this by jumping to the out_free label to ensure the memory is properly freed. Also, consolidate the error handling for the mbox_request_channel() failure case to use the same label.

Vendor	Product	Versions
Linux	Linux	affected `742aa6c563d29c367edbf0ef7236a7a853ed9be4 - < da4b44c42f40501db35f5d0a6243708a061490a0` affected `742aa6c563d29c367edbf0ef7236a7a853ed9be4 - < e3dd5cffba07de6574165a72851471cd42cc6d15` affected `742aa6c563d29c367edbf0ef7236a7a853ed9be4 - < 17c84fb7cf3971cc621646185d785670e9530ca1` affected `742aa6c563d29c367edbf0ef7236a7a853ed9be4 - < 5a741f8cc6fe62542f955cd8d24933a1b6589cbd`
Linux	Linux	affected `6.8` unaffected `0 - < 6.8` unaffected `6.12.78 - <= 6.12.` unaffected `6.18.20 - <= 6.18.` unaffected `6.19.10 - <= 6.19.*` +1 more versions

References

https://git.kernel.org/stable/c/da4b44c42f40501db35f5d0a6243708a061490a0

https://git.kernel.org/stable/c/e3dd5cffba07de6574165a72851471cd42cc6d15

https://git.kernel.org/stable/c/17c84fb7cf3971cc621646185d785670e9530ca1

https://git.kernel.org/stable/c/5a741f8cc6fe62542f955cd8d24933a1b6589cbd

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-23464

Description

Affected Products

References