Unrated severityNVD Advisory· Published May 27, 2026· Updated May 27, 2026
CVE-2026-45928
CVE-2026-45928
Description
In the Linux kernel, the following vulnerability has been resolved:
media: chips-media: wave5: Fix memory leak on codec_info allocation failure
In wave5_vpu_open_enc() and wave5_vpu_open_dec(), a vpu instance is allocated via kzalloc(). If the subsequent allocation for inst->codec_info fails, the functions return -ENOMEM without freeing the previously allocated instance, causing a memory leak.
Fix this by calling kfree() on the instance in this error path to ensure it is properly released.
Affected products
2Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.