CVE-2026-23164 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: rocker: fix memory leak in rocker_world_port_post_fini() In rocker_world_port_pre_init(), rocker_port->wpriv is allocated with kzalloc(wops->port_priv_size, GFP_KERNEL). However, in rocker_world_port_post_fini(), the memory is only freed when wops->port_post_fini callback is set: if (!wops->port_post_fini) return; wops->port_post_fini(rocker_port); kfree(rocker_port->wpriv); Since rocker_ofdpa_ops does not implement port_post_fini callback (it is NULL), the wpriv memory allocated for each port is never freed when ports are removed. This leads to a memory leak of sizeof(struct ofdpa_port) bytes per port on every device removal. Fix this by always calling kfree(rocker_port->wpriv) regardless of whether the port_post_fini callback exists.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

References

Link	Providers
https://git.kernel.org/stable/c/2a3a64d75d2d0727da285749476761ebcad557a3
https://git.kernel.org/stable/c/8ce2e85889939c02740b4245301aa5c35fc94887
https://git.kernel.org/stable/c/8d7ba71e46216b8657a82ca2ec118bc93812a4d0
https://git.kernel.org/stable/c/b11e6f926480ab0939fec44781f28558c54be4e7
https://git.kernel.org/stable/c/d448bf96889f1905e740c554780f5c9fa0440566
https://git.kernel.org/stable/c/d8723917efda3b4f4c3de78d1ec1e1af015c0be1
https://git.kernel.org/stable/c/dce375f4afc348c310d171abcde7ec1499a4c26a

History

Sat, 14 Feb 2026 16:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: rocker: fix memory leak in rocker_world_port_post_fini() In rocker_world_port_pre_init(), rocker_port->wpriv is allocated with kzalloc(wops->port_priv_size, GFP_KERNEL). However, in rocker_world_port_post_fini(), the memory is only freed when wops->port_post_fini callback is set: if (!wops->port_post_fini) return; wops->port_post_fini(rocker_port); kfree(rocker_port->wpriv); Since rocker_ofdpa_ops does not implement port_post_fini callback (it is NULL), the wpriv memory allocated for each port is never freed when ports are removed. This leads to a memory leak of sizeof(struct ofdpa_port) bytes per port on every device removal. Fix this by always calling kfree(rocker_port->wpriv) regardless of whether the port_post_fini callback exists.
Title		rocker: fix memory leak in rocker_world_port_post_fini()
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/2a3a64d75d2d0727da285749476761ebcad557a3 https://git.kernel.org/stable/c/8ce2e85889939c02740b4245301aa5c35fc94887 https://git.kernel.org/stable/c/8d7ba71e46216b8657a82ca2ec118bc93812a4d0 https://git.kernel.org/stable/c/b11e6f926480ab0939fec44781f28558c54be4e7 https://git.kernel.org/stable/c/d448bf96889f1905e740c554780f5c9fa0440566 https://git.kernel.org/stable/c/d8723917efda3b4f4c3de78d1ec1e1af015c0be1 https://git.kernel.org/stable/c/dce375f4afc348c310d171abcde7ec1499a4c26a

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-02-14T16:01:28.624Z

Updated: 2026-02-14T16:01:28.624Z

Reserved: 2026-01-13T15:37:45.980Z

Link: CVE-2026-23164

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-02-14T16:15:56.590

Modified: 2026-02-14T16:15:56.590

Link: CVE-2026-23164

Redhat

No data.

OpenCVE Enrichment

No data.

Metrics

Affected Vendors & Products

Metrics

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object