Unrated severityNVD Advisory· Published Feb 4, 2026· Updated Feb 9, 2026

intel_th: fix device leak on output open()

CVE-2026-23091

Description

In the Linux kernel, the following vulnerability has been resolved:

Make sure to drop the reference taken when looking up the th device during output device open() on errors and on close().

Note that a recent commit fixed the leak in a couple of open() error paths but not all of them, and the reference is still leaking on successful open().

Affected products

Linux/Linux Kernel Rtllm-fuzzy
Linux/Linuxv5
Range: 4.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

git.kernel.org/stable/c/0fca16c5591534cc1fec8b6181277ee3a3d0f26cmitre
git.kernel.org/stable/c/64015cbf06e8bb75b81ae95b997e847b55280f7fmitre
git.kernel.org/stable/c/95fc36a234da24bbc5f476f8104a5a15f99ed3e3mitre
git.kernel.org/stable/c/af4b9467296b9a16ebc008147238070236982b6dmitre
git.kernel.org/stable/c/b71e64ef7ff9443835d1333e3e80ab1e49e5209fmitre
git.kernel.org/stable/c/bf7785434b5d05d940d936b78925080950bd54ddmitre
git.kernel.org/stable/c/f9b059bda4276f2bb72cb98ec7875a747f042ea2mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000