In the Linux kernel, the following vulnerability has been resolved:

soc: mediatek: svs: Fix memory leak in svs_enable_debug_write()

In svs_enable_debug_write(), the buf allocated by memdup_user_nul()
is leaked if kstrtoint() fails.

Fix this by using __free(kfree) to automatically free buf, eliminating
the need for explicit kfree() calls and preventing leaks.

[Angelo: Added missing cleanup.h inclusion]

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
Linux Linux unaffected
Version Status Constraints
13f1bbcfb5822fcaacfc652017b57b79ffcacefa affected < 47a3e372f7d68776adb749a27c0ec9058ff1b4fd
13f1bbcfb5822fcaacfc652017b57b79ffcacefa affected < 06195456c4e4de3826c4ca60eca941c472f991d0
13f1bbcfb5822fcaacfc652017b57b79ffcacefa affected < a58c97828911c0b6e25d6b556789da974003efda
13f1bbcfb5822fcaacfc652017b57b79ffcacefa affected < 0f6498077faa9cd89bb787bcc57063494a6f0601
13f1bbcfb5822fcaacfc652017b57b79ffcacefa affected < 6bb10466e0884b4a68d4a1f3f4bb87eeb471c18a
13f1bbcfb5822fcaacfc652017b57b79ffcacefa affected < 6259094ee806fb813ca95894c65fb80e2ec98bf1
Linux Linux affected
Version Status Constraints
6.0 affected
0 unaffected < 6.0
6.1.165 unaffected ≤ 6.1.*
6.6.128 unaffected ≤ 6.6.*
6.12.75 unaffected ≤ 6.12.*
6.18.14 unaffected ≤ 6.18.*
6.19.4 unaffected ≤ 6.19.*
7.0 unaffected ≤ *

No data.

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors Products
Linux Subscribe
Linux Kernel Subscribe

Project Subscriptions

Vendors Products
Linux Subscribe
Linux Kernel Subscribe
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://git.kernel.org/stable/c/06195456c4e4de3826c4ca60eca941c472f991d0 cve-icon cve-icon
https://git.kernel.org/stable/c/0f6498077faa9cd89bb787bcc57063494a6f0601 cve-icon cve-icon
https://git.kernel.org/stable/c/47a3e372f7d68776adb749a27c0ec9058ff1b4fd cve-icon cve-icon
https://git.kernel.org/stable/c/6259094ee806fb813ca95894c65fb80e2ec98bf1 cve-icon cve-icon
https://git.kernel.org/stable/c/6bb10466e0884b4a68d4a1f3f4bb87eeb471c18a cve-icon cve-icon
https://git.kernel.org/stable/c/a58c97828911c0b6e25d6b556789da974003efda cve-icon cve-icon
History

Wed, 27 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: soc: mediatek: svs: Fix memory leak in svs_enable_debug_write() In svs_enable_debug_write(), the buf allocated by memdup_user_nul() is leaked if kstrtoint() fails. Fix this by using __free(kfree) to automatically free buf, eliminating the need for explicit kfree() calls and preventing leaks. [Angelo: Added missing cleanup.h inclusion]
Title soc: mediatek: svs: Fix memory leak in svs_enable_debug_write()
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-05-27T12:16:53.677Z

Reserved: 2026-05-13T15:03:33.082Z

Link: CVE-2026-45881

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-27T14:17:01.930

Modified: 2026-05-27T14:48:31.480

Link: CVE-2026-45881

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T17:15:37Z

Weaknesses

No weakness.