CVE-2026-23029 — Vulnetix

CVE-2026-23029 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix kvm_device leak in kvm_eiointc_destroy() In kvm_ioctl_create_device(), kvm_device has allocated memory, kvm_device->destroy() seems to be supposed to free its kvm_device struct, but kvm_eiointc_destroy() is not currently doing this, that would lead to a memory leak. So, fix it.

EPSS 0.01% · 1.6th percentile

Risk Scores

EPSS Score

0.01%

1.6th percentile

Affected Products

Vendor	Product	Versions
Linux	Linux	6.18.7, 0, 2e8b9df82631e714cc2b7bf302772c8259673180
linux	linux_kernel	6.13, 6.13, 6.13

Timeline

Jan 31, 2026 EPSS Score
Jan 31, 2026 CVE Published
Feb 2, 2026 EPSS Score
Feb 5, 2026 EPSS Score
Feb 7, 2026 EPSS Score
Feb 9, 2026 EPSS Score
Feb 12, 2026 EPSS Score
Feb 14, 2026 EPSS Score
Feb 16, 2026 EPSS Score
Feb 19, 2026 EPSS Score
Feb 21, 2026 EPSS Score
Feb 23, 2026 EPSS Score

References

https://git.kernel.org/stable/c/e94ec9661c5820d157d2cc4b6cf4a6ab656a7b4d url
https://git.kernel.org/stable/c/7d8553fc75aefa7ec936af0cf8443ff90b51732e url
https://nvd.nist.gov/vuln/detail/CVE-2026-23029 advisory

Open in Interactive Console →