CVE-2026-43317 - Vulnerability Details

- most: core: fix leak on early registration failure

Description

In the Linux kernel, the following vulnerability has been resolved:

most: core: fix leak on early registration failure

A recent commit fixed a resource leak on early registration failures but
for some reason left out the first error path which still leaks the
resources associated with the interface.

Fix up also the first error path so that the interface is always
released on errors.

Published: 2026-05-08

Score: n/a

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`723de0f9171eeb49a3ae98cae82ebbbb992b3a7c`	affected	< bbfe49ffb892bddf32c34bea95b7ff0fc30affb5
`723de0f9171eeb49a3ae98cae82ebbbb992b3a7c`	affected	< f1ba620f9e8d7291f80c0554e4b820f5fb30e819
`723de0f9171eeb49a3ae98cae82ebbbb992b3a7c`	affected	< 5fd4396c2e48e90cc2597a86c18227d56ea845f0
`723de0f9171eeb49a3ae98cae82ebbbb992b3a7c`	affected	< 2c198c272f9c9213b0fdf6b4a879f445c574f416

Linux

affected

Version	Status	Constraints
`5.6`	affected	—
`0`	unaffected	< 5.6
`6.12.75`	unaffected	≤ 6.12.*
`6.18.16`	unaffected	≤ 6.18.*
`6.19.6`	unaffected	≤ 6.19.*
`7.0`	unaffected	≤ *

No data.

No data available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/2c198c272f9c9213b0fdf6b4a879f445c574f416
https://git.kernel.org/stable/c/5fd4396c2e48e90cc2597a86c18227d56ea845f0
https://git.kernel.org/stable/c/bbfe49ffb892bddf32c34bea95b7ff0fc30affb5
https://git.kernel.org/stable/c/f1ba620f9e8d7291f80c0554e4b820f5fb30e819

History

Fri, 08 May 2026 14:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: most: core: fix leak on early registration failure A recent commit fixed a resource leak on early registration failures but for some reason left out the first error path which still leaks the resources associated with the interface. Fix up also the first error path so that the interface is always released on errors.
Title		most: core: fix leak on early registration failure
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/2c198c272f9c9213b0fdf6b4a879f445c574f416 https://git.kernel.org/stable/c/5fd4396c2e48e90cc2597a86c18227d56ea845f0 https://git.kernel.org/stable/c/bbfe49ffb892bddf32c34bea95b7ff0fc30affb5 https://git.kernel.org/stable/c/f1ba620f9e8d7291f80c0554e4b820f5fb30e819

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-05-08T13:26:12.899Z

Updated: 2026-05-08T13:26:12.899Z

Reserved: 2026-05-01T14:12:56.001Z

Link: CVE-2026-43317

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-05-08T14:16:40.243

Modified: 2026-05-08T14:16:40.243

Link: CVE-2026-43317

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

No weakness.

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object