CVE-2026-45922

Published: May 27, 2026

Modified: May 27, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix memory leak in GET_DATA_DIRECT_SYSFS_PATH handler The UVERBS_HANDLER(MLX5_IB_METHOD_GET_DATA_DIRECT_SYSFS_PATH) function allocates memory for the device path using kobject_get_path(). If the length of the device path exceeds the output buffer length, the function returns -ENOSPC but does not free the allocated memory, resulting in a memory leak. Add a kfree() call to the error path to ensure the allocated memory is properly freed. Compile tested only. Issue found using a prototype static analysis tool and code review.

Vendor	Product	Versions
Linux	Linux	affected `ec7ad6530909983c8736c80af46e3529ce7bab55 - < ee998cdbff6680891b0efd9d6ce53a388e5342c3` affected `ec7ad6530909983c8736c80af46e3529ce7bab55 - < b2bc649c18fbe8a7fd38d17266da3dcbfbcc44d2` affected `ec7ad6530909983c8736c80af46e3529ce7bab55 - < b3a10eca24fcfe913c0875e620f19596001bd6dc` affected `ec7ad6530909983c8736c80af46e3529ce7bab55 - < 9b9d253908478f504297ac283c514e5953ddafa6`
Linux	Linux	affected `6.12` unaffected `0 - < 6.12` unaffected `6.12.75 - <= 6.12.` unaffected `6.18.14 - <= 6.18.` unaffected `6.19.4 - <= 6.19.*` +1 more versions

References

https://git.kernel.org/stable/c/ee998cdbff6680891b0efd9d6ce53a388e5342c3

https://git.kernel.org/stable/c/b2bc649c18fbe8a7fd38d17266da3dcbfbcc44d2

https://git.kernel.org/stable/c/b3a10eca24fcfe913c0875e620f19596001bd6dc

https://git.kernel.org/stable/c/9b9d253908478f504297ac283c514e5953ddafa6

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-45922

Description

Affected Products

References