CVE-2026-45928

Published: May 27, 2026

Modified: May 27, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: media: chips-media: wave5: Fix memory leak on codec_info allocation failure In wave5_vpu_open_enc() and wave5_vpu_open_dec(), a vpu instance is allocated via kzalloc(). If the subsequent allocation for inst->codec_info fails, the functions return -ENOMEM without freeing the previously allocated instance, causing a memory leak. Fix this by calling kfree() on the instance in this error path to ensure it is properly released.

Vendor	Product	Versions
Linux	Linux	affected `9707a6254a8a6b978bde811a44fe07d86c229d1c - < 52defdd4034db1a34bb48006f889d66a3629224b` affected `9707a6254a8a6b978bde811a44fe07d86c229d1c - < 1de71556cbd6e1d0d26fb86b9b3bb8caa0df8495` affected `9707a6254a8a6b978bde811a44fe07d86c229d1c - < 32e9e45cf7e3422d21fa64535588d3572faf71c3` affected `9707a6254a8a6b978bde811a44fe07d86c229d1c - < a519e21e32398459ba357e67b541402f7295ee1b`
Linux	Linux	affected `6.8` unaffected `0 - < 6.8` unaffected `6.12.75 - <= 6.12.` unaffected `6.18.14 - <= 6.18.` unaffected `6.19.4 - <= 6.19.*` +1 more versions

References

https://git.kernel.org/stable/c/52defdd4034db1a34bb48006f889d66a3629224b

https://git.kernel.org/stable/c/1de71556cbd6e1d0d26fb86b9b3bb8caa0df8495

https://git.kernel.org/stable/c/32e9e45cf7e3422d21fa64535588d3572faf71c3

https://git.kernel.org/stable/c/a519e21e32398459ba357e67b541402f7295ee1b

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-45928

Description

Affected Products

References