CVE-2026-43264
Published: May 6, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: fbdev: of: display_timing: fix refcount leak in of_get_display_timings() of_parse_phandle() returns a device_node with refcount incremented, which is stored in 'entry' and then copied to 'native_mode'. When the error paths at lines 184 or 192 jump to 'entryfail', native_mode's refcount is not decremented, causing a refcount leak. Fix this by changing the goto target from 'entryfail' to 'timingfail', which properly calls of_node_put(native_mode) before cleanup.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected cc3f414cf2e404130584b63d373161ba6fd24bc2 - < 20881ad42e651c69d89eb38a2042838187900fd6affected cc3f414cf2e404130584b63d373161ba6fd24bc2 - < b5bdcc5afbff845834d04d651773cb6b47db5dd3affected cc3f414cf2e404130584b63d373161ba6fd24bc2 - < 2b22e4fe1273c24f405ed7903349c4bbd82b6368affected cc3f414cf2e404130584b63d373161ba6fd24bc2 - < 3ed019654234edb8625c05d05e15d40f74e64f70affected cc3f414cf2e404130584b63d373161ba6fd24bc2 - < d6f34bbff07476c6abb8672c89d217824871c5ed+3 more versions |
Linux | Linux | affected 3.9unaffected 0 - < 3.9unaffected 5.10.252 - <= 5.10.*unaffected 5.15.202 - <= 5.15.*unaffected 6.1.165 - <= 6.1.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now