CVE-2026-45888

Published: May 27, 2026

Modified: May 27, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: md/raid1: fix memory leak in raid1_run() raid1_run() calls setup_conf() which registers a thread via md_register_thread(). If raid1_set_limits() fails, the previously registered thread is not unregistered, resulting in a memory leak of the md_thread structure and the thread resource itself. Add md_unregister_thread() to the error path to properly cleanup the thread, which aligns with the error handling logic of other paths in this function. Compile tested only. Issue found using a prototype static analysis tool and code review.

Vendor	Product	Versions
Linux	Linux	affected `97894f7d3c2966164516a8a5109674763d3a55e1 - < c94fd6e8a71efd047ff36930e840f3c25679e136` affected `97894f7d3c2966164516a8a5109674763d3a55e1 - < ec10e3dc93994b87adf7c759a4639fe34013989a` affected `97894f7d3c2966164516a8a5109674763d3a55e1 - < b37588b0282a2b3cdda9db1d53712745ce66dea0` affected `97894f7d3c2966164516a8a5109674763d3a55e1 - < 6abc7d5dcf0ee0f85e16e41c87fbd06231f28753`
Linux	Linux	affected `6.9` unaffected `0 - < 6.9` unaffected `6.12.75 - <= 6.12.` unaffected `6.18.14 - <= 6.18.` unaffected `6.19.4 - <= 6.19.*` +1 more versions

References

https://git.kernel.org/stable/c/c94fd6e8a71efd047ff36930e840f3c25679e136

https://git.kernel.org/stable/c/ec10e3dc93994b87adf7c759a4639fe34013989a

https://git.kernel.org/stable/c/b37588b0282a2b3cdda9db1d53712745ce66dea0

https://git.kernel.org/stable/c/6abc7d5dcf0ee0f85e16e41c87fbd06231f28753

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-45888

Description

Affected Products

References