VDB

CVE-2026-46042

CVE-2026-46042 PUBLISHED

Reported by Linux · Published May 27, 2026

In the Linux kernel, the following vulnerability has been resolved: mm/mempolicy: fix memory leaks in weighted_interleave_auto_store() weighted_interleave_auto_store() fetches old_wi_state inside the if (!input) block only. This causes two memory leaks: 1. When a user writes "false" and the current mode is already manual, the function returns early without freeing the freshly allocated new_wi_state. 2. When a user writes "true", old_wi_state stays NULL because the fetch is skipped entirely. The old state is then overwritten by rcu_assign_pointer() but never freed, since the cleanup path is gated on old_wi_state being non-NULL. A user can trigger this repeatedly by writing "1" in a loop. Fix both leaks by moving the old_wi_state fetch before the input check, making it unconditional. This also allows a unified early return for both "true" and "false" when the requested mode matches the current mode. Reviewed by: Donet Tom <donettom@linux.ibm.com>

EPSS 0.02% · 6.4th percentile

Risk Scores

EPSS Score
0.02%
6.4th percentile

Affected Products

VendorProductVersions
LinuxLinuxe341f9c3c8412e57fe0042a33a2640245ecdf619, e341f9c3c8412e57fe0042a33a2640245ecdf619, e341f9c3c8412e57fe0042a33a2640245ecdf619
LinuxLinux6.16, 0, 6.18.27
LinuxLinux7.1, e341f9c3c8412e57fe0042a33a2640245ecdf619, e341f9c3c8412e57fe0042a33a2640245ecdf619
linuxlinux_kernel6.16, 6.16, 6.16

Timeline

  • May 27, 2026 CVE Published
  • May 28, 2026 EPSS Score
  • May 29, 2026 EPSS Score
  • May 29, 2026 Security Advisory
  • May 30, 2026 EPSS Score
  • May 31, 2026 EPSS Score
  • Jun 1, 2026 EPSS Score
  • Jun 4, 2026 Coalition ESS Score
  • Jun 5, 2026 EPSS Score
  • Jun 16, 2026 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›