CVE-2026-23257

In the Linux kernel, the following vulnerability has been resolved: net: liquidio: Fix off-by-one error in PF setup_nic_devices() cleanup In setup_nic_devices(), the initialization loop jumps to the label setup_nic_dev_free on failure. The current cleanup loop while(i--) skip the failing index i, causing a memory leak. Fix this by changing the loop to iterate from the current index i down to 0. Also, decrement i in the devlink_alloc failure path to point to the last successfully allocated index. Compile tested only. Issue found using code review.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/293eaad0d6d6b2a37a458c7deb7be345349cd963	Patch
https://git.kernel.org/stable/c/8558aef4e8a1a83049ab906d21d391093cfa7e7f	Patch
https://git.kernel.org/stable/c/a0d2389c8cdc1f05de5eb8663bffe9ed05dca769	Patch
https://git.kernel.org/stable/c/af38d9a5cb49fe9d0d282b44f17fdc1f3270d99d	Patch
https://git.kernel.org/stable/c/d86c58eb005eb99da402452f3db7a6e0eae32815	Patch
https://git.kernel.org/stable/c/f1216b80c9040a904d2ad7c8cd24ca0ff1f36932	Patch
https://git.kernel.org/stable/c/f86bd16280a0f88b538394e0565c56ce4756da99	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc1::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc2::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc3::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc4::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc5::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc6::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc7::::::
	cpe:2.3:o:linux:linux_kernel:6.19:rc8::::::

History

21 May 2026, 00:11

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
First Time		Linux linux Kernel Linux
Summary		(es) En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta: net: liquidio: Corrección de error 'off-by-one' en la limpieza de PF setup_nic_devices() En setup_nic_devices(), el bucle de inicialización salta a la etiqueta setup_nic_dev_free en caso de fallo. El bucle de limpieza actual while(i--) omite el índice 'i' fallido, causando una fuga de memoria. Esto se corrige cambiando el bucle para que itere desde el índice actual 'i' hasta 0. Además, se decrementa 'i' en la ruta de fallo de devlink_alloc para que apunte al último índice asignado con éxito. Probado solo en compilación. Problema encontrado mediante revisión de código.
References	~~() https://git.kernel.org/stable/c/293eaad0d6d6b2a37a458c7deb7be345349cd963 -~~	() https://git.kernel.org/stable/c/293eaad0d6d6b2a37a458c7deb7be345349cd963 - Patch
References	~~() https://git.kernel.org/stable/c/8558aef4e8a1a83049ab906d21d391093cfa7e7f -~~	() https://git.kernel.org/stable/c/8558aef4e8a1a83049ab906d21d391093cfa7e7f - Patch
References	~~() https://git.kernel.org/stable/c/a0d2389c8cdc1f05de5eb8663bffe9ed05dca769 -~~	() https://git.kernel.org/stable/c/a0d2389c8cdc1f05de5eb8663bffe9ed05dca769 - Patch
References	~~() https://git.kernel.org/stable/c/af38d9a5cb49fe9d0d282b44f17fdc1f3270d99d -~~	() https://git.kernel.org/stable/c/af38d9a5cb49fe9d0d282b44f17fdc1f3270d99d - Patch
References	~~() https://git.kernel.org/stable/c/d86c58eb005eb99da402452f3db7a6e0eae32815 -~~	() https://git.kernel.org/stable/c/d86c58eb005eb99da402452f3db7a6e0eae32815 - Patch
References	~~() https://git.kernel.org/stable/c/f1216b80c9040a904d2ad7c8cd24ca0ff1f36932 -~~	() https://git.kernel.org/stable/c/f1216b80c9040a904d2ad7c8cd24ca0ff1f36932 - Patch
References	~~() https://git.kernel.org/stable/c/f86bd16280a0f88b538394e0565c56ce4756da99 -~~	() https://git.kernel.org/stable/c/f86bd16280a0f88b538394e0565c56ce4756da99 - Patch
CPE		cpe:2.3:o:linux:linux_kernel:6.19:rc5:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc6:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc4:::::: cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:6.19:rc7:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc8:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc3:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc1:::::: cpe:2.3:o:linux:linux_kernel:6.19:rc2::::::
CWE		CWE-193

18 Mar 2026, 18:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-03-18 18:16

Updated : 2026-05-21 00:11

NVD link : CVE-2026-23257

Mitre link : CVE-2026-23257

CVE.ORG link : CVE-2026-23257

JSON object : View

Products Affected

linux

linux_kernel

CWE

CWE-193

Off-by-one Error

5.5 /10