CVE-2026-45939 PUBLISHED

gpib: Fix memory leak in ni_usb_init()

Assigner: Linux
Reserved: 13.05.2026 Published: 27.05.2026 Updated: 27.05.2026

In the Linux kernel, the following vulnerability has been resolved:

gpib: Fix memory leak in ni_usb_init()

In ni_usb_init(), if ni_usb_setup_init() fails, the function returns -EFAULT without freeing the allocated writes buffer, leading to a memory leak.

Additionally, ni_usb_setup_init() returns 0 on failure, which causes ni_usb_init() to return -EFAULT, an inappropriate error code for this situation.

Fix the leak by freeing writes in the error path. Modify ni_usb_setup_init() to return -EINVAL on failure and propagate this error code in ni_usb_init().

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 4e127de14fa78bcd98c6459b0b984b8266cd0203 to 9c97fcfb7a62dea893104a046d544da8ac23370b (excl.)
  • affected from 4e127de14fa78bcd98c6459b0b984b8266cd0203 to c899d4b62c0757a280831e89c1f3801b597e8f38 (excl.)
  • affected from 4e127de14fa78bcd98c6459b0b984b8266cd0203 to b89921eed8cf2d97250bac4be38dbcfbf048b586 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 6.13 is affected
  • unaffected from 0 to 6.13 (excl.)
  • unaffected from 6.18.14 to 6.18.* (incl.)
  • unaffected from 6.19.4 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References