{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-23337", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2026-01-13T15:37:45.997Z", "datePublished": "2026-03-25T10:27:26.720Z", "dateUpdated": "2026-03-25T10:27:26.720Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-03-25T10:27:26.720Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: pinconf-generic: Fix memory leak in pinconf_generic_parse_dt_config()\n\nIn pinconf_generic_parse_dt_config(), if parse_dt_cfg() fails, it returns\ndirectly. This bypasses the cleanup logic and results in a memory leak of\nthe cfg buffer.\n\nFix this by jumping to the out label on failure, ensuring kfree(cfg) is\ncalled before returning."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/pinctrl/pinconf-generic.c"], "versions": [{"version": "90a18c512884adb49ddc2fb30e94594169aae808", "lessThan": "63ee429780a5d43b5b4406c6128109b0f47cf2f1", "status": "affected", "versionType": "git"}, {"version": "90a18c512884adb49ddc2fb30e94594169aae808", "lessThan": "7a648d598cb8e8c62af3f0e020a25820a3f3a9a7", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/pinctrl/pinconf-generic.c"], "versions": [{"version": "6.19", "status": "affected"}, {"version": "0", "lessThan": "6.19", "status": "unaffected", "versionType": "semver"}, {"version": "6.19.7", "lessThanOrEqual": "6.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "7.0-rc3", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.19", "versionEndExcluding": "6.19.7"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.19", "versionEndExcluding": "7.0-rc3"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/63ee429780a5d43b5b4406c6128109b0f47cf2f1"}, {"url": "https://git.kernel.org/stable/c/7a648d598cb8e8c62af3f0e020a25820a3f3a9a7"}], "title": "pinctrl: pinconf-generic: Fix memory leak in pinconf_generic_parse_dt_config()", "x_generator": {"engine": "bippy-1.2.0"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: pinconf-generic: Fix memory leak in pinconf_generic_parse_dt_config()\n\nIn pinconf_generic_parse_dt_config(), if parse_dt_cfg() fails, it returns\ndirectly. This bypasses the cleanup logic and results in a memory leak of\nthe cfg buffer.\n\nFix this by jumping to the out label on failure, ensuring kfree(cfg) is\ncalled before returning."}], "id": "CVE-2026-23337", "lastModified": "2026-03-25T15:41:33.977", "metrics": {}, "published": "2026-03-25T11:16:31.413", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/63ee429780a5d43b5b4406c6128109b0f47cf2f1"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/7a648d598cb8e8c62af3f0e020a25820a3f3a9a7"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Awaiting Analysis"}

{"bugzilla": {"description": "kernel: pinctrl: pinconf-generic: Fix memory leak in pinconf_generic_parse_dt_config()", "id": "2451275", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451275"}, "csaw": false, "cwe": "CWE-772", "details": ["A flaw was found in the Linux kernel's pinctrl subsystem, specifically within the pinconf-generic module. This vulnerability occurs when the `pinconf_generic_parse_dt_config()` function fails to properly deallocate memory, bypassing the intended cleanup logic. This oversight results in a memory leak, which can lead to a gradual degradation of system performance and stability over time."], "name": "CVE-2026-23337", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:10", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 10"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2026-03-25T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-23337\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-23337\nhttps://lore.kernel.org/linux-cve-announce/2026032534-CVE-2026-23337-5018@gregkh/T"], "threat_severity": "Moderate"}

{"analysis": {"en": {"generated_at": "2026-03-25T11:40:21.254877+00:00", "value": {"mitigation_remediation": ["Apply the kernel update that includes the patch fixing pinconf_generic_parse_dt_config() memory leak.", "Verify that your kernel version includes the change by checking for commit 63ee429780a5 or 7a648d598cb8 in the source.", "Monitor system memory usage and kernel logs for signs of memory exhaustion or driver failures."], "summary": {"action": "Apply Patch", "impact": "Memory Leak Leading to Potential Denial of Service"}, "threat_synthesis": {"affected_systems": "All Linux kernel builds that include the pinctrl:pinconf-generic driver before the patch are affected. Because the vulnerability is triggered during device tree configuration parsing, any kernel that loads this driver without the fix is at risk. No specific kernel versions are listed, so the precaution applies to all current and future releases lacking the commit.", "description_and_impact": "The vulnerability exists in the Linux kernel's generic pin configuration driver. When pinconf_generic_parse_dt_config() fails during device tree parsing, the cleanup code is skipped, leaving the cfg buffer allocated. This memory leak results in consumption of kernel memory and can eventually exhaust available memory, potentially causing system instability or denial of service.", "risk_and_exploitability": "The CVSS score is not provided, but the inherent risk is moderate since the flaw does not provide immediate code execution; it merely leaks memory. Exploitation would likely require the attacker to induce a failure in pinconf_generic_parse_dt_config(), which occurs during driver initialization or device tree processing, suggesting a local or privileged access vector. With EPSS unavailable and no KEV listing, the likelihood of active exploitation is uncertain, but the ongoing memory usage makes it a valid concern for high-availability systems."}}}}, "created": "2026-03-25T21:32:16.887768+00:00", "updated": "2026-03-25T21:32:16.887794+00:00", "vendors": [], "weaknesses": ["CWE-401"]}