CVE-2026-43104 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix a memory leak in hang state error path When vc4_save_hang_state() encounters an early return condition, it returns without freeing the previously allocated `kernel_state`, leaking memory. Add the missing kfree() calls by consolidating the early return paths into a single place.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/3eb7dd55021d0f4308fbea0bea21d2118984d8e7
https://git.kernel.org/stable/c/9525d169e5fd481538cf8c663cc5839e54f2e481
https://git.kernel.org/stable/c/d8fdd6adc07b78ad3e9ee0004876d90cb59ca941
https://git.kernel.org/stable/c/dd5c49787a32da96a2b154427eb17cbf12a83c28
https://git.kernel.org/stable/c/e352e9adc9f6df54d63150ff832f71c04e30744b

History

Wed, 06 May 2026 09:30:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: drm/vc4: Fix a memory leak in hang state error path When vc4_save_hang_state() encounters an early return condition, it returns without freeing the previously allocated `kernel_state`, leaking memory. Add the missing kfree() calls by consolidating the early return paths into a single place.
Title		drm/vc4: Fix a memory leak in hang state error path
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/3eb7dd55021d0f4308fbea0bea21d2118984d8e7 https://git.kernel.org/stable/c/9525d169e5fd481538cf8c663cc5839e54f2e481 https://git.kernel.org/stable/c/d8fdd6adc07b78ad3e9ee0004876d90cb59ca941 https://git.kernel.org/stable/c/dd5c49787a32da96a2b154427eb17cbf12a83c28 https://git.kernel.org/stable/c/e352e9adc9f6df54d63150ff832f71c04e30744b

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-06T07:40:33.036Z

Updated: 2026-05-06T07:40:33.036Z

Reserved: 2026-05-01T14:12:55.984Z

Link: CVE-2026-43104

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-05-06T10:16:23.980

Modified: 2026-05-06T10:16:23.980

Link: CVE-2026-43104

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-43104", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-05-01T14:12:55.984Z", "datePublished": "2026-05-06T07:40:33.036Z", "dateUpdated": "2026-05-06T07:40:33.036Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-06T07:40:33.036Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vc4: Fix a memory leak in hang state error path\n\nWhen vc4_save_hang_state() encounters an early return condition, it\nreturns without freeing the previously allocated `kernel_state`,\nleaking memory.\n\nAdd the missing kfree() calls by consolidating the early return paths\ninto a single place."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/gpu/drm/vc4/vc4_gem.c"], "versions": [{"version": "214613656b5179f0daab6e0a080814b5100d45f0", "lessThan": "dd5c49787a32da96a2b154427eb17cbf12a83c28", "status": "affected", "versionType": "git"}, {"version": "214613656b5179f0daab6e0a080814b5100d45f0", "lessThan": "d8fdd6adc07b78ad3e9ee0004876d90cb59ca941", "status": "affected", "versionType": "git"}, {"version": "214613656b5179f0daab6e0a080814b5100d45f0", "lessThan": "e352e9adc9f6df54d63150ff832f71c04e30744b", "status": "affected", "versionType": "git"}, {"version": "214613656b5179f0daab6e0a080814b5100d45f0", "lessThan": "3eb7dd55021d0f4308fbea0bea21d2118984d8e7", "status": "affected", "versionType": "git"}, {"version": "214613656b5179f0daab6e0a080814b5100d45f0", "lessThan": "9525d169e5fd481538cf8c663cc5839e54f2e481", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/gpu/drm/vc4/vc4_gem.c"], "versions": [{"version": "4.5", "status": "affected"}, {"version": "0", "lessThan": "4.5", "status": "unaffected", "versionType": "semver"}, {"version": "6.6.136", "lessThanOrEqual": "6.6.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.12.83", "lessThanOrEqual": "6.12.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.18.24", "lessThanOrEqual": "6.18.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.19.14", "lessThanOrEqual": "6.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.0", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.5", "versionEndExcluding": "6.6.136"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.5", "versionEndExcluding": "6.12.83"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.5", "versionEndExcluding": "6.18.24"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.5", "versionEndExcluding": "6.19.14"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "4.5", "versionEndExcluding": "7.0"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/dd5c49787a32da96a2b154427eb17cbf12a83c28"}, {"url": "https://git.kernel.org/stable/c/d8fdd6adc07b78ad3e9ee0004876d90cb59ca941"}, {"url": "https://git.kernel.org/stable/c/e352e9adc9f6df54d63150ff832f71c04e30744b"}, {"url": "https://git.kernel.org/stable/c/3eb7dd55021d0f4308fbea0bea21d2118984d8e7"}, {"url": "https://git.kernel.org/stable/c/9525d169e5fd481538cf8c663cc5839e54f2e481"}], "title": "drm/vc4: Fix a memory leak in hang state error path", "x_generator": {"engine": "bippy-1.2.0"}}}}