CVE-2026-43155 - Vulnerability Details

- mux: mmio: fix regmap leak on probe failure

Description

In the Linux kernel, the following vulnerability has been resolved:

mux: mmio: fix regmap leak on probe failure

The mmio regmap that may be allocated during probe is never freed.

Switch to using the device managed allocator so that the regmap is
released on probe failures (e.g. probe deferral) and on driver unbind.

Published: 2026-05-06

Score: 5.5 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The Linux kernel contains a flaw in the mmio regmap handling for mux drivers. When a device driver’s probe fails or is deferred, a regmap is allocated but never released. This results in a memory leak that can gradually consume kernel address space and ultimately trigger out‑of‑memory conditions or a kernel crash, reducing availability.

Affected Systems

All Linux kernel builds that include the generic mmio regmap infrastructure for mux drivers are potentially impacted. Because no specific kernel version is listed, any kernel that implements this driver and does not yet incorporate the recent commit that switches to a device‑managed allocator is vulnerable.

Risk and Exploitability

The CVSS score of 5.5 indicates a moderate severity, and the EPSS score of <1% signals a very low probability of exploitation. The defect occurs inside the kernel during driver probe, which normally requires privileged execution or the ability to influence device loading. Based on the description, the likely attack vector would be an adversary who can force probe failures or drive the system to load a buggy device model; however, the vulnerability is not listed in CISA’s KEV catalog and is not trivially exploitable from user space.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`61de83fd8256e185588670d3cf0bccc3e913819c`	affected	< 76096f156fe9dc9fbd6e4618088706e91b9b0a6c
`61de83fd8256e185588670d3cf0bccc3e913819c`	affected	< cbde3c109d52564ae2c12e514c33c44345e84b2c
`61de83fd8256e185588670d3cf0bccc3e913819c`	affected	< 3c4ae63073d84abee5d81ce46d86a94e9dae9c89

Linux

affected

Version	Status	Constraints
`6.16`	affected	—
`0`	unaffected	< 6.16
`6.18.16`	unaffected	≤ 6.18.*
`6.19.6`	unaffected	≤ 6.19.*
`7.0`	unaffected	≤ *

Configuration 1 [-]

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

No data.

Vendor Product Confidence Versions

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`[61de83fd8256e185588670d3cf0bccc3e913819c,76096f156fe9dc9fbd6e4618088706e91b9b0a6c)`	affected	code_commit	—
`[61de83fd8256e185588670d3cf0bccc3e913819c,cbde3c109d52564ae2c12e514c33c44345e84b2c)`	affected	code_commit	—
`[61de83fd8256e185588670d3cf0bccc3e913819c,3c4ae63073d84abee5d81ce46d86a94e9dae9c89)`	affected	code_commit	—

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`6.16`	affected	semver	—
`[0,6.16)`	unaffected	semver	—
`[6.18.16,6.19.0)`	unaffected	semver	—
`[6.19.6,6.20.0)`	unaffected	semver	—
`[7.0,*]`	unaffected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade to a kernel version that includes the commit which uses a device‑managed allocator for regmap allocation and frees the regmap on probe failure.
If no kernel update is available, manually cherry‑pick or apply the patches from commits c4ae63073d84abee5d81ce46d86a94e9dae9c89, 76096f156fe9dc9fbd6e4618088706e91b9b0a6c, and cbde3c109d52564ae2c12e514c33c44345e84b2c to enforce regmap cleanup.
After applying the fix, monitor kernel memory consumption for the mux driver and review dmesg for any regmap leak warnings to confirm the issue has been mitigated.

Generated by OpenCVE AI on May 13, 2026 at 23:10 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00013.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/3c4ae63073d84abee5d81ce46d86a94e9dae9c89
https://git.kernel.org/stable/c/76096f156fe9dc9fbd6e4618088706e91b9b0a6c
https://git.kernel.org/stable/c/cbde3c109d52564ae2c12e514c33c44345e84b2c
https://lore.kernel.org/linux-cve-announce/2026050630-CVE-2026-43155-32e0@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2026-43155
https://www.cve.org/CVERecord?id=CVE-2026-43155

History

Wed, 13 May 2026 21:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-401
Metrics		cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}`

Thu, 07 May 2026 02:45:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-400 CWE-590

Thu, 07 May 2026 00:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-772
References		https://lore.kernel.org/linux-cve-announce/2026050630-CVE-2026-43155-32e0@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2026-43155 https://www.cve.org/CVERecord?id=CVE-2026-43155

Wed, 06 May 2026 15:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-400 CWE-590

Wed, 06 May 2026 12:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: mux: mmio: fix regmap leak on probe failure The mmio regmap that may be allocated during probe is never freed. Switch to using the device managed allocator so that the regmap is released on probe failures (e.g. probe deferral) and on driver unbind.
Title		mux: mmio: fix regmap leak on probe failure
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/3c4ae63073d84abee5d81ce46d86a94e9dae9c89 https://git.kernel.org/stable/c/76096f156fe9dc9fbd6e4618088706e91b9b0a6c https://git.kernel.org/stable/c/cbde3c109d52564ae2c12e514c33c44345e84b2c

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-06T11:27:35.800Z

Updated: 2026-05-11T22:18:49.584Z

Reserved: 2026-05-01T14:12:55.989Z

Link: CVE-2026-43155

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2026-05-06T12:16:33.310

Modified: 2026-05-13T21:09:24.813

Link: CVE-2026-43155

Redhat

Severity :

Publid Date: 2026-05-06T00:00:00Z

Links: CVE-2026-43155 - Bugzilla

OpenCVE Enrichment

Updated: 2026-05-13T23:15:08Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object