CVE-2026-23421 PUBLISHED

drm/xe/configfs: Free ctx_restore_mid_bb in release

Assigner: Linux
Reserved: 13.01.2026 Published: 03.04.2026 Updated: 03.04.2026

In the Linux kernel, the following vulnerability has been resolved:

drm/xe/configfs: Free ctx_restore_mid_bb in release

ctx_restore_mid_bb memory is allocated in wa_bb_store(), but xe_config_device_release() only frees ctx_restore_post_bb.

Free ctx_restore_mid_bb[0].cs as well to avoid leaking the allocation when the configfs device is removed.

(cherry picked from commit a235e7d0098337c3f2d1e8f3610c719a589e115f)

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from b30d5de3d40c3fa642079bac0d91f17091c5f877 to 7f971dfd48983074adc7bbcea3ee95ce7aad47cb (excl.)
  • affected from b30d5de3d40c3fa642079bac0d91f17091c5f877 to 3557359ea3df32430ea7c30f7a708ca9a91d7e0e (excl.)
  • affected from b30d5de3d40c3fa642079bac0d91f17091c5f877 to e377182f0266f46f02d01838e6bde67b9dac0d66 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 6.18 is affected
  • unaffected from 0 to 6.18 (excl.)
  • unaffected from 6.18.17 to 6.18.* (incl.)
  • unaffected from 6.19.7 to 6.19.* (incl.)
  • unaffected from 7.0-rc3 to * (incl.)

References