CVE-2026-23132
Unknown Unknown - Not Provided
Error Handling Flaws in Linux drm/bridge synopsys dw-dp Component

Publication date: 2026-02-14

Last updated on: 2026-03-17

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: drm/bridge: synopsys: dw-dp: fix error paths of dw_dp_bind Fix several issues in dw_dp_bind() error handling: 1. Missing return after drm_bridge_attach() failure - the function continued execution instead of returning an error. 2. Resource leak: drm_dp_aux_register() is not a devm function, so drm_dp_aux_unregister() must be called on all error paths after aux registration succeeds. This affects errors from: - drm_bridge_attach() - phy_init() - devm_add_action_or_reset() - platform_get_irq() - devm_request_threaded_irq() 3. Bug fix: platform_get_irq() returns the IRQ number or a negative error code, but the error path was returning ERR_PTR(ret) instead of ERR_PTR(dp->irq). Use a goto label for cleanup to ensure consistent error handling.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-14
Last Modified
2026-03-17
Generated
2026-06-16
AI Q&A
2026-02-14
EPSS Evaluated
2026-06-15
NVD
CVE-2026-23132
EUVD
EUVD-2026-5904
Affected Vendors & Products
Showing 7 associated CPEs
Vendor Product Version / Range
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel 6.19
linux linux_kernel From 6.18 (inc) to 6.18.8 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is in the Linux kernel's drm/bridge synopsys dw-dp driver, specifically in the dw_dp_bind() function's error handling.

  • The function failed to return immediately after drm_bridge_attach() failed, causing continued execution despite an error.
  • There was a resource leak because drm_dp_aux_register() is not managed automatically, so drm_dp_aux_unregister() must be called on all error paths after successful aux registration. This was missing in several error cases.
  • An error handling bug existed where platform_get_irq() returns either an IRQ number or a negative error code, but the error path incorrectly returned ERR_PTR(ret) instead of ERR_PTR(dp->irq).

The fix involved using a goto label for cleanup to ensure consistent and correct error handling and resource cleanup.

Impact Analysis

This vulnerability can lead to improper error handling in the Linux kernel's display bridge driver, which may cause resource leaks and inconsistent system states.

Resource leaks can degrade system stability and performance over time.

Incorrect error returns may cause unexpected behavior in dependent components or drivers, potentially leading to system crashes or malfunctioning display hardware.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

The vulnerability is fixed in the Linux kernel by correcting error handling in the dw_dp_bind() function of the drm/bridge synopsys dw-dp driver.

To mitigate this vulnerability, you should update your Linux kernel to a version that includes this fix.

The fix ensures proper error returns and resource cleanup to prevent resource leaks and incorrect error handling.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-23132. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart