CVE-2026-23260
Memory Leak in Linux Kernel regmap Maple on Allocation Failure
Publication date: 2026-03-18
Last updated on: 2026-03-18
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the Linux kernel's regmap maple component. Specifically, when the function regcache_maple_write() tries to allocate a new block called 'entry' to merge adjacent ranges, it uses mas_store_gfp() to store it. If mas_store_gfp() fails, the newly allocated 'entry' is not freed, causing a memory leak.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
I don't know
How can this vulnerability impact me? :
The impact of this vulnerability is a memory leak in the Linux kernel. Over time, repeated failures in mas_store_gfp() could cause the system to consume more memory than expected, potentially leading to degraded performance or system instability.