CVE-2026-46221

Published: May 28, 2026

Modified: May 28, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: EDAC/versalnet: Fix device name memory leak The device name allocated via kzalloc() in init_one_mc() is assigned to dev->init_name but never freed on the normal removal path. device_register() copies init_name and then sets dev->init_name to NULL, so the name pointer becomes unreachable from the device. Thus leaking memory. Use a stack-local char array instead of using kzalloc() for name.

Vendor	Product	Versions
Linux	Linux	affected `d5fe2fec6c40dda03df8cc9b4a97de0b7e39f984 - < 24d2912962d087ebff7c4984f8ac34a5f23c8dbf` affected `d5fe2fec6c40dda03df8cc9b4a97de0b7e39f984 - < b16033c8774f5fb4c0cb9b445a1dfc68f499ae6a` affected `d5fe2fec6c40dda03df8cc9b4a97de0b7e39f984 - < 8cf5dd235eff6008cb04c3d8064d2acfa90616f1`
Linux	Linux	affected `6.18` unaffected `0 - < 6.18` unaffected `6.18.32 - <= 6.18.` unaffected `7.0.9 - <= 7.0.` unaffected `7.1-rc3 - <= *`

References

https://git.kernel.org/stable/c/24d2912962d087ebff7c4984f8ac34a5f23c8dbf

https://git.kernel.org/stable/c/b16033c8774f5fb4c0cb9b445a1dfc68f499ae6a

https://git.kernel.org/stable/c/8cf5dd235eff6008cb04c3d8064d2acfa90616f1

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-46221

Description

Affected Products

References