CVE-2026-45872
Published: May 27, 2026
Modified: May 27, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: scsi: smartpqi: Fix memory leak in pqi_report_phys_luns() pqi_report_phys_luns() fails to release the rpl_list buffer when encountering an unsupported data format or when the allocation for rpl_16byte_wwid_list fails. These early returns bypass the cleanup logic, leading to memory leaks. Consolidate the error handling by adding an out_free_rpl_list label and use goto statements to ensure rpl_list is consistently freed on failure. Compile tested only. Issue found using a prototype static analysis tool and code review.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 28ca6d876c5a375094847606046e0bf5d044d9b4 - < f471ecfec093e39ef8fd08978413793087daa14daffected 28ca6d876c5a375094847606046e0bf5d044d9b4 - < fdf1188cfa80f88c9f18d58cb33d57ff40e70e26affected 28ca6d876c5a375094847606046e0bf5d044d9b4 - < d52e13122d3771f753dd73ae6512fa01f58015cbaffected 28ca6d876c5a375094847606046e0bf5d044d9b4 - < e5579ebaadc7b699868dad0f591a7bf83cd647e1affected 28ca6d876c5a375094847606046e0bf5d044d9b4 - < 454570434114e4862767f506a442a0f110b639b2+1 more versions |
Linux | Linux | affected 5.16unaffected 0 - < 5.16unaffected 6.1.165 - <= 6.1.*unaffected 6.6.128 - <= 6.6.*unaffected 6.12.75 - <= 6.12.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now