VDB

CVE-2026-23024

CVE-2026-23024 PUBLISHED CVSS 5.5 MEDIUM

In the Linux kernel, the following vulnerability has been resolved: idpf: fix memory leak of flow steer list on rmmod The flow steering list maintains entries that are added and removed as ethtool creates and deletes flow steering rules. Module removal with active entries causes memory leak as the list is not properly cleaned up. Prevent this by iterating through the remaining entries in the list and freeing the associated memory during module removal. Add a spinlock (flow_steer_list_lock) to protect the list access from multiple threads.

EPSS 0.03% · 7.4th percentile

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.03%
7.4th percentile

Affected Products

VendorProductVersions
LinuxLinuxada3e24b84a097b27a823f1ad98e5b2e8c979689, 0, 6.19
linuxlinux_kernel6.19, 6.19, 6.19

Timeline

  • Jan 31, 2026 EPSS Score
  • Jan 31, 2026 CVE Published
  • Feb 2, 2026 EPSS Score
  • Feb 5, 2026 EPSS Score
  • Feb 7, 2026 EPSS Score
  • Feb 10, 2026 EPSS Score
  • Feb 12, 2026 EPSS Score
  • Feb 14, 2026 EPSS Score
  • Feb 17, 2026 EPSS Score
  • Feb 19, 2026 EPSS Score
  • Feb 21, 2026 EPSS Score
  • Feb 24, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›