Description
In the Linux kernel, the following vulnerability has been resolved:

platform/x86/amd: Fix memory leak in wbrf_record()

The tmp buffer is allocated using kcalloc() but is not freed if
acpi_evaluate_dsm() fails. This causes a memory leak in the error path.

Fix this by explicitly freeing the tmp buffer in the error handling
path of acpi_evaluate_dsm().
Published: 2026-02-04
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Memory Leak
Action: Apply patch
AI Analysis

Impact

The kernel’s wbrf_record() routine allocates a temporary buffer with kcalloc() but fails to free it when acpi_evaluate_dsm() encounters an error. This defect causes kernel memory to grow without bound on repeated failures, constituting a classic memory‑leak scenario (CWE‑401).

Affected Systems

The issue applies to Linux kernel 6.19 release‑candidate builds from rc1 through rc6. Any kernel that includes the legacy wbrf_record() implementation in that series is vulnerable until the patch that frees the buffer on failure is applied. The CVE does not state whether later stable releases contain the fix, so users cannot assume that simply running a newer kernel automatically resolves the issue.

Risk and Exploitability

The CVSS score of 5.5 indicates moderate severity, and the EPSS score of less than 1% suggests a low likelihood of real‑world exploitation. The vulnerability is not listed in CISA’s KEV catalog. The risk manifests when acpi_evaluate_dsm() repeatedly fails, allowing an attacker or system instability to drain kernel memory and potentially degrade performance or availability. No explicit exploitation path or privilege level is provided in the CVE description, so the threat is limited to the memory‑leak effect itself.

Generated by OpenCVE AI on April 18, 2026 at 20:09 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the kernel to the latest mainline stable release that includes the fix.
  • If an immediate upgrade is not possible, reduce the likelihood of the error path by disabling ACPI devices or functionality that invoke acpi_evaluate_dsm().
  • Monitor kernel memory usage for unexpected growth and apply the patch when anomalous patterns are observed.

Generated by OpenCVE AI on April 18, 2026 at 20:09 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6126-1 linux security update
History

Fri, 13 Mar 2026 21:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-401
CPEs cpe:2.3:o:linux:linux_kernel:6.19:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.19:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.19:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.19:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.19:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.19:rc6:*:*:*:*:*:*
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

Thu, 05 Feb 2026 12:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 threat_severity

Moderate

Wed, 04 Feb 2026 16:30:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: Fix memory leak in wbrf_record() The tmp buffer is allocated using kcalloc() but is not freed if acpi_evaluate_dsm() fails. This causes a memory leak in the error path. Fix this by explicitly freeing the tmp buffer in the error handling path of acpi_evaluate_dsm().
Title platform/x86/amd: Fix memory leak in wbrf_record()
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-02-09T08:38:04.329Z

Reserved: 2026-01-13T15:37:45.953Z

Link: CVE-2026-23065

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2026-02-04T17:16:17.207

Modified: 2026-03-13T21:27:57.180

Link: CVE-2026-23065

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-02-04T00:00:00Z

Links: CVE-2026-23065 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-18T20:15:09Z

Weaknesses