CVE-2026-43264 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: fbdev: of: display_timing: fix refcount leak in of_get_display_timings() of_parse_phandle() returns a device_node with refcount incremented, which is stored in 'entry' and then copied to 'native_mode'. When the error paths at lines 184 or 192 jump to 'entryfail', native_mode's refcount is not decremented, causing a refcount leak. Fix this by changing the goto target from 'entryfail' to 'timingfail', which properly calls of_node_put(native_mode) before cleanup.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

References

Link	Providers
https://git.kernel.org/stable/c/20881ad42e651c69d89eb38a2042838187900fd6
https://git.kernel.org/stable/c/2b22e4fe1273c24f405ed7903349c4bbd82b6368
https://git.kernel.org/stable/c/3ed019654234edb8625c05d05e15d40f74e64f70
https://git.kernel.org/stable/c/69290f2d3999c5fa1a7f5d5593cfc5461fa3ee64
https://git.kernel.org/stable/c/b5bdcc5afbff845834d04d651773cb6b47db5dd3
https://git.kernel.org/stable/c/c5734f9030a8b1e13868d1641b5163d8e659306e
https://git.kernel.org/stable/c/d6f34bbff07476c6abb8672c89d217824871c5ed
https://git.kernel.org/stable/c/eacf9840ae1285a1ef47eb0ce16d786e542bd4d7

History

Wed, 06 May 2026 12:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: fbdev: of: display_timing: fix refcount leak in of_get_display_timings() of_parse_phandle() returns a device_node with refcount incremented, which is stored in 'entry' and then copied to 'native_mode'. When the error paths at lines 184 or 192 jump to 'entryfail', native_mode's refcount is not decremented, causing a refcount leak. Fix this by changing the goto target from 'entryfail' to 'timingfail', which properly calls of_node_put(native_mode) before cleanup.
Title		fbdev: of: display_timing: fix refcount leak in of_get_display_timings()
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/20881ad42e651c69d89eb38a2042838187900fd6 https://git.kernel.org/stable/c/2b22e4fe1273c24f405ed7903349c4bbd82b6368 https://git.kernel.org/stable/c/3ed019654234edb8625c05d05e15d40f74e64f70 https://git.kernel.org/stable/c/69290f2d3999c5fa1a7f5d5593cfc5461fa3ee64 https://git.kernel.org/stable/c/b5bdcc5afbff845834d04d651773cb6b47db5dd3 https://git.kernel.org/stable/c/c5734f9030a8b1e13868d1641b5163d8e659306e https://git.kernel.org/stable/c/d6f34bbff07476c6abb8672c89d217824871c5ed https://git.kernel.org/stable/c/eacf9840ae1285a1ef47eb0ce16d786e542bd4d7

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-06T11:28:50.867Z

Updated: 2026-05-06T11:28:50.867Z

Reserved: 2026-05-01T14:12:55.997Z

Link: CVE-2026-43264

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-05-06T12:16:47.373

Modified: 2026-05-06T13:07:51.607

Link: CVE-2026-43264

Redhat

No data.

OpenCVE Enrichment

No data.

Metrics

Affected Vendors & Products

Metrics

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object