CVE-2026-23033 - Vulnerability Details

- dmaengine: omap-dma: fix dma_pool resource leak in error paths

Description

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: omap-dma: fix dma_pool resource leak in error paths

The dma_pool created by dma_pool_create() is not destroyed when
dma_async_device_register() or of_dma_controller_register() fails,
causing a resource leak in the probe error paths.

Add dma_pool_destroy() in both error paths to properly release the
allocated dma_pool resource.

Published: 2026-01-31

Score: n/a

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

A missing cleanup in the DMA engine driver for OMAP devices causes the dma_pool created during device registration to remain allocated when the probe fails. The leak means that repeated failures can gradually consume kernel memory, potentially destabilizing the system or leading to a denial-of-service if the kernel runs out of memory. The flaw originates from improper resource management when dma_async_device_register() or of_dma_controller_register() returns an error.

Affected Systems

The issue affects any Linux kernel that includes the DMA engine implementation for OMAP devices and has not been updated to the patch that adds dma_pool_destroy() in the failure paths. Specific kernel releases are not listed, so all affected kernels without the mitigation should be considered vulnerable.

Risk and Exploitability

The EPSS score is reported as below 1 %, indicating a very low probability that the vulnerability will be actively exploited. It is not listed in the CISA KEV catalog. The attack vector is local to the kernel, as the leak occurs during driver probe on boot or module load. An attacker with sufficient privilege to trigger re‑probe conditions could repeatedly exhaust kernel memory, but the lack of a public exploit and low exploit probability reduce the immediate risk. Nonetheless, the impact on availability warrants timely patching.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 8d66cb05b8b76396387a7b3a91f9284225c87f04
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 2b29f38f4f9660595e8272b8e8b82ffcca7ce592
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 6b867a98699657c2a698bbc9e60656349b39b905
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 88a9483f093bbb9263dcf21bc7fdb5132e5de88d
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 4b93712e96be17029bd22787f2e39feb0e73272c
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 829b00481734dd54e72f755fd6584bce6fbffbb0
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 2e1136acf8a8887c29f52e35a77b537309af321f

Linux

affected

Version	Status	Constraints
`3.6`	affected	—
`0`	unaffected	< 3.6
`5.10.249`	unaffected	≤ 5.10.*
`5.15.199`	unaffected	≤ 5.15.*
`6.1.162`	unaffected	≤ 6.1.*
`6.6.122`	unaffected	≤ 6.6.*
`6.12.67`	unaffected	≤ 6.12.*
`6.18.7`	unaffected	≤ 6.18.*
`6.19`	unaffected	≤ *

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade to a kernel version that includes the dma_pool_destroy fix for OMAP DMA engine drivers.
Restart the system to ensure the updated driver is loaded and the resource leak no longer occurs.
Monitor kernel memory usage and system logs for signs of repeated driver probe failures or memory exhaustion.

Generated by OpenCVE AI on April 18, 2026 at 18:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DLA	DLA-4475-1	linux security update
Debian DLA	DLA-4476-1	linux-6.1 security update
Debian DSA	DSA-6126-1	linux security update
Debian DSA	DSA-6127-1	linux security update
Ubuntu USN	USN-8162-1	Linux kernel (NVIDIA Tegra) vulnerabilities
Ubuntu USN	USN-8180-1	Linux kernel vulnerabilities
Ubuntu USN	USN-8180-2	Linux kernel (FIPS) vulnerabilities
Ubuntu USN	USN-8186-1	Linux kernel (Real-time) vulnerabilities
Ubuntu USN	USN-8187-1	Linux kernel (NVIDIA) vulnerabilities
Ubuntu USN	USN-8188-1	Linux kernel (HWE) vulnerabilities

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00015.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/2b29f38f4f9660595e8272b8e8b82ffcca7ce592
https://git.kernel.org/stable/c/2e1136acf8a8887c29f52e35a77b537309af321f
https://git.kernel.org/stable/c/4b93712e96be17029bd22787f2e39feb0e73272c
https://git.kernel.org/stable/c/6b867a98699657c2a698bbc9e60656349b39b905
https://git.kernel.org/stable/c/829b00481734dd54e72f755fd6584bce6fbffbb0
https://git.kernel.org/stable/c/88a9483f093bbb9263dcf21bc7fdb5132e5de88d
https://git.kernel.org/stable/c/8d66cb05b8b76396387a7b3a91f9284225c87f04
https://lore.kernel.org/linux-cve-announce/2026013121-CVE-2026-23033-c543@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2026-23033
https://www.cve.org/CVERecord?id=CVE-2026-23033

History

Sat, 18 Apr 2026 19:00:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-573

Fri, 06 Feb 2026 16:45:00 +0000

Type	Values Removed	Values Added
References		https://git.kernel.org/stable/c/2b29f38f4f9660595e8272b8e8b82ffcca7ce592 https://git.kernel.org/stable/c/6b867a98699657c2a698bbc9e60656349b39b905 https://git.kernel.org/stable/c/8d66cb05b8b76396387a7b3a91f9284225c87f04

Mon, 02 Feb 2026 12:15:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2026013121-CVE-2026-23033-c543@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2026-23033 https://www.cve.org/CVERecord?id=CVE-2026-23033

Sat, 31 Jan 2026 12:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: dmaengine: omap-dma: fix dma_pool resource leak in error paths The dma_pool created by dma_pool_create() is not destroyed when dma_async_device_register() or of_dma_controller_register() fails, causing a resource leak in the probe error paths. Add dma_pool_destroy() in both error paths to properly release the allocated dma_pool resource.
Title		dmaengine: omap-dma: fix dma_pool resource leak in error paths
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/2e1136acf8a8887c29f52e35a77b537309af321f https://git.kernel.org/stable/c/4b93712e96be17029bd22787f2e39feb0e73272c https://git.kernel.org/stable/c/829b00481734dd54e72f755fd6584bce6fbffbb0 https://git.kernel.org/stable/c/88a9483f093bbb9263dcf21bc7fdb5132e5de88d

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-01-31T11:42:28.352Z

Updated: 2026-02-09T08:37:27.739Z

Reserved: 2026-01-13T15:37:45.942Z

Link: CVE-2026-23033

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2026-01-31T12:16:06.613

Modified: 2026-04-15T00:35:42.020

Link: CVE-2026-23033

Redhat

Severity :

Publid Date: 2026-01-31T00:00:00Z

Links: CVE-2026-23033 - Bugzilla

OpenCVE Enrichment

Updated: 2026-04-18T18:45:05Z

Weaknesses

CWE-573

Impact

Affected Systems

Risk and Exploitability

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object