{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-23464","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2026-01-13T15:37:46.021Z","datePublished":"2026-04-03T15:15:43.137Z","dateUpdated":"2026-05-11T22:07:29.791Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T22:07:29.791Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: microchip: mpfs: Fix memory leak in mpfs_sys_controller_probe()\n\nIn mpfs_sys_controller_probe(), if of_get_mtd_device_by_node() fails,\nthe function returns immediately without freeing the allocated memory\nfor sys_controller, leading to a memory leak.\n\nFix this by jumping to the out_free label to ensure the memory is\nproperly freed.\n\nAlso, consolidate the error handling for the mbox_request_channel()\nfailure case to use the same label."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/soc/microchip/mpfs-sys-controller.c"],"versions":[{"version":"742aa6c563d29c367edbf0ef7236a7a853ed9be4","lessThan":"da4b44c42f40501db35f5d0a6243708a061490a0","status":"affected","versionType":"git"},{"version":"742aa6c563d29c367edbf0ef7236a7a853ed9be4","lessThan":"e3dd5cffba07de6574165a72851471cd42cc6d15","status":"affected","versionType":"git"},{"version":"742aa6c563d29c367edbf0ef7236a7a853ed9be4","lessThan":"17c84fb7cf3971cc621646185d785670e9530ca1","status":"affected","versionType":"git"},{"version":"742aa6c563d29c367edbf0ef7236a7a853ed9be4","lessThan":"5a741f8cc6fe62542f955cd8d24933a1b6589cbd","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/soc/microchip/mpfs-sys-controller.c"],"versions":[{"version":"6.8","status":"affected"},{"version":"0","lessThan":"6.8","status":"unaffected","versionType":"semver"},{"version":"6.12.78","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.18.20","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"6.19.10","lessThanOrEqual":"6.19.*","status":"unaffected","versionType":"semver"},{"version":"7.0","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.8","versionEndExcluding":"6.12.78"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.8","versionEndExcluding":"6.18.20"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.8","versionEndExcluding":"6.19.10"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.8","versionEndExcluding":"7.0"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/da4b44c42f40501db35f5d0a6243708a061490a0"},{"url":"https://git.kernel.org/stable/c/e3dd5cffba07de6574165a72851471cd42cc6d15"},{"url":"https://git.kernel.org/stable/c/17c84fb7cf3971cc621646185d785670e9530ca1"},{"url":"https://git.kernel.org/stable/c/5a741f8cc6fe62542f955cd8d24933a1b6589cbd"}],"title":"soc: microchip: mpfs: Fix memory leak in mpfs_sys_controller_probe()","x_generator":{"engine":"bippy-1.2.0"}}}}