{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-23389","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2026-01-13T15:37:46.008Z","datePublished":"2026-03-25T10:28:06.991Z","dateUpdated":"2026-05-11T22:05:55.948Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T22:05:55.948Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nice: Fix memory leak in ice_set_ringparam()\n\nIn ice_set_ringparam, tx_rings and xdp_rings are allocated before\nrx_rings. If the allocation of rx_rings fails, the code jumps to\nthe done label leaking both tx_rings and xdp_rings. Furthermore, if\nthe setup of an individual Rx ring fails during the loop, the code jumps\nto the free_tx label which releases tx_rings but leaks xdp_rings.\n\nFix this by introducing a free_xdp label and updating the error paths to\nensure both xdp_rings and tx_rings are properly freed if rx_rings\nallocation or setup fails.\n\nCompile tested only. Issue found using a prototype static analysis tool\nand code review."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/net/ethernet/intel/ice/ice_ethtool.c"],"versions":[{"version":"fcea6f3da546b93050f3534aadea7bd96c1d7349","lessThan":"e0c211a0c26159058303712d6b4fbd1c88835e6d","status":"affected","versionType":"git"},{"version":"fcea6f3da546b93050f3534aadea7bd96c1d7349","lessThan":"b23282218eca27b710111460b4964c8a456c6c44","status":"affected","versionType":"git"},{"version":"fcea6f3da546b93050f3534aadea7bd96c1d7349","lessThan":"63dc317dfcd3faffd082c2bf3080f9ad070273da","status":"affected","versionType":"git"},{"version":"fcea6f3da546b93050f3534aadea7bd96c1d7349","lessThan":"44ba32a892b72de3faa04b8cfb1f2f1418fdd580","status":"affected","versionType":"git"},{"version":"fcea6f3da546b93050f3534aadea7bd96c1d7349","lessThan":"fe868b499d16f55bbeea89992edb98043c9de416","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/net/ethernet/intel/ice/ice_ethtool.c"],"versions":[{"version":"4.17","status":"affected"},{"version":"0","lessThan":"4.17","status":"unaffected","versionType":"semver"},{"version":"6.6.136","lessThanOrEqual":"6.6.*","status":"unaffected","versionType":"semver"},{"version":"6.12.81","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.18.22","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"6.19.7","lessThanOrEqual":"6.19.*","status":"unaffected","versionType":"semver"},{"version":"7.0","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.17","versionEndExcluding":"6.6.136"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.17","versionEndExcluding":"6.12.81"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.17","versionEndExcluding":"6.18.22"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.17","versionEndExcluding":"6.19.7"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.17","versionEndExcluding":"7.0"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/e0c211a0c26159058303712d6b4fbd1c88835e6d"},{"url":"https://git.kernel.org/stable/c/b23282218eca27b710111460b4964c8a456c6c44"},{"url":"https://git.kernel.org/stable/c/63dc317dfcd3faffd082c2bf3080f9ad070273da"},{"url":"https://git.kernel.org/stable/c/44ba32a892b72de3faa04b8cfb1f2f1418fdd580"},{"url":"https://git.kernel.org/stable/c/fe868b499d16f55bbeea89992edb98043c9de416"}],"title":"ice: Fix memory leak in ice_set_ringparam()","x_generator":{"engine":"bippy-1.2.0"}}}}