CVE-2026-23176
Memory Leak in Linux Kernel Toshiba_HAPS Component Fixed
Publication date: 2026-02-14
Last updated on: 2026-02-14
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| toshiba | haps | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is related to memory leaks in the Linux kernel's Toshiba HAPS driver for the x86 platform. Specifically, the function toshiba_haps_add() leaks memory when it returns an error after successfully allocating a haps object. Additionally, the toshiba_haps_remove() function does not free the allocated haps object before clearing its pointer, causing the allocated memory to become unreachable and thus leaked.
The issue was fixed by changing the memory allocation method to use devm_kzalloc(), which manages the memory lifecycle more effectively and prevents these leaks.
How can this vulnerability impact me? :
This vulnerability can lead to memory leaks in the Linux kernel when using the Toshiba HAPS driver. Over time, these leaks could cause increased memory usage, potentially leading to degraded system performance or instability if the leaked memory accumulates significantly.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
This vulnerability involves memory leaks in the toshiba_haps driver routines in the Linux kernel.
To mitigate this issue, the memory allocation should be changed to use devm_kzalloc() in the affected routines to properly manage memory and prevent leaks.