CVE-2026-45928 in Linuxinformação

Sumário

de MITRE • 27/05/2026

In the Linux kernel, the following vulnerability has been resolved:

media: chips-media: wave5: Fix memory leak on codec_info allocation failure

In wave5_vpu_open_enc() and wave5_vpu_open_dec(), a vpu instance is allocated via kzalloc(). If the subsequent allocation for inst->codec_info fails, the functions return -ENOMEM without freeing the previously allocated instance, causing a memory leak.

Fix this by calling kfree() on the instance in this error path to ensure it is properly released.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

Linux

Reservar

13/05/2026

Divulgação

27/05/2026

Moderação

aceite

Entrada

VDB-366156

CPE

pronto

CWE

CWE-401 (confirmado)

CVSS

5.7 (VulDB)

EPSS

0.00023

KEV

não

Atividades

baixo

Sector

Telecommunication, Finance, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-45928
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-45928
CVE Details	https://www.cvedetails.com/cve/CVE-2026-45928/

◂ Voltar Visão Geral Próximo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!