Unrated severityNVD Advisory· Published Feb 14, 2026

octeon_ep: Fix memory leak in octep_device_setup()

CVE-2026-23160

Description

In the Linux kernel, the following vulnerability has been resolved:

In octep_device_setup(), if octep_ctrl_net_init() fails, the function returns directly without unmapping the mapped resources and freeing the allocated configuration memory.

Fix this by jumping to the unsupported_dev label, which performs the necessary cleanup. This aligns with the error handling logic of other paths in this function.

Compile tested only. Issue found using a prototype static analysis tool and code review.

Affected products

Linux/Linux Kernel Rtllm-fuzzy
Linux/Linuxv5
Range: 6.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

git.kernel.org/stable/c/5058d3f8f17202e673f90af1446252322bd0850fmitre
git.kernel.org/stable/c/8016dc5ee19a77678c264f8ba368b1e873fa705bmitre
git.kernel.org/stable/c/d753f3c3f9d7a6e6dbb4d3a97b73007d71624551mitre
git.kernel.org/stable/c/fdfd28e13c244d7c3345e74f339fd1b67605b694mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000