CVE-2026-23081

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2026-23081

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23081.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2026-23081

Downstream

BELL-CVE-2026-23081

DEBIAN-CVE-2026-23081

UBUNTU-CVE-2026-23081

Published

2026-02-04T16:08:05.822Z

Modified

2026-02-09T19:34:39.892626Z

Summary

net: phy: intel-xway: fix OF node refcount leakage

Details

In the Linux kernel, the following vulnerability has been resolved:

net: phy: intel-xway: fix OF node refcount leakage

Automated review spotted am OF node reference count leakage when checking if the 'leds' child node exists.

Call ofputnode() to correctly maintain the refcount.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23081.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

1758af47b98c17da464cb45f476875150955dd48

Fixed

1f24dfd556401b75f78e8d9cbd94dd9f31411c3a

Fixed

79912b256e14054e6ba177d7e7e631485ce23dbe

Affected versions

v6.*

v6.12

v6.12-rc3

v6.12-rc4

v6.12-rc5

v6.12-rc6

v6.12-rc7

v6.13

v6.13-rc1

v6.13-rc2

v6.13-rc3

v6.13-rc4

v6.13-rc5

v6.13-rc6

v6.13-rc7

v6.14

v6.14-rc1

v6.14-rc2

v6.14-rc3

v6.14-rc4

v6.14-rc5

v6.14-rc6

v6.14-rc7

v6.15

v6.15-rc1

v6.15-rc2

v6.15-rc3

v6.15-rc4

v6.15-rc5

v6.15-rc6

v6.15-rc7

v6.16

v6.16-rc1

v6.16-rc2

v6.16-rc3

v6.16-rc4

v6.16-rc5

v6.16-rc6

v6.16-rc7

v6.17

v6.17-rc1

v6.17-rc2

v6.17-rc3

v6.17-rc4

v6.17-rc5

v6.17-rc6

v6.17-rc7

v6.18

v6.18-rc1

v6.18-rc2

v6.18-rc3

v6.18-rc4

v6.18-rc5

v6.18-rc6

v6.18-rc7

v6.18.1

v6.18.2

v6.18.3

v6.18.4

v6.18.5

v6.18.6

v6.18.7

v6.19-rc1

v6.19-rc2

v6.19-rc3

v6.19-rc4

v6.19-rc5

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23081.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

6.13.0

Fixed

6.18.8

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-23081.json"