CVE-2026-45928 in Linux情報

要約

〜によって MITRE • 2026年05月27日

In the Linux kernel, the following vulnerability has been resolved:

media: chips-media: wave5: Fix memory leak on codec_info allocation failure

In wave5_vpu_open_enc() and wave5_vpu_open_dec(), a vpu instance is allocated via kzalloc(). If the subsequent allocation for inst->codec_info fails, the functions return -ENOMEM without freeing the previously allocated instance, causing a memory leak.

Fix this by calling kfree() on the instance in this error path to ensure it is properly released.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

責任者

Linux

予約する

2026年05月13日

公開

2026年05月27日

モデレーション

承諾済み

エントリ

VDB-366156

CPE

準備完了

CWE

CWE-401 (確認済み)

CVSS

5.7 (VulDB)

EPSS

0.00023

KEV

いいえ

アクティビティ

低い

セクター

Hostingprovider, Insurance, ...

ソース

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-45928
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-45928
CVE Details	https://www.cvedetails.com/cve/CVE-2026-45928/

◂ 前概要次 ▸

Interested in the pricing of exploits?

See the underground prices here!