CVE-2026-43246
Published: May 9, 2026Last modified: May 9, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: media: i2c/tw9906: Fix potential memory leak in tw9906_probe() In one of the error paths in tw9906_probe(), the memory allocated in v4l2_ctrl_handler_init() and v4l2_ctrl_new_std() is not freed. Fix that by calling v4l2_ctrl_handler_free() on the handler in that error path.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 5.5 |
| Attack Vector | LOCAL |
| Attack complexity | LOW |
| Privileges required | LOW |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | NONE |
| Integrity impact | NONE |
| Availability impact | HIGH |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | linux-lts | Fixed (6.1.167-r0) |
| 25 LTS | linux-lts | Fixed (6.12.80-r0) | |
| Stream | linux-lts | Fixed (6.12.76-r0) |
References
- https://git.kernel.org/stable/c/0c33338514d8246280533a77091e6b6ee548c606
- https://git.kernel.org/stable/c/377a7756914364d72550fc86ca0f404ef1d96141
- https://git.kernel.org/stable/c/59420d5d9c46b084e21f9ea6ce79fc79ae9e414c
- https://git.kernel.org/stable/c/9548a8bbf511a252a9848f96220c6b95c9a3b918
- https://git.kernel.org/stable/c/cad237b6c875fbee5d353a2b289e98d240d17ec8
- https://git.kernel.org/stable/c/ccb92def042a3636ed47f25a30bd553788e5191e
- https://git.kernel.org/stable/c/e9a490937942f18205dac7b6b192975ef1369ae1
- https://git.kernel.org/stable/c/fb09d8b80046216646f1a344410cfa9cfa6c6c7c