CVE-2026-43146

Source
https://cve.org/CVERecord?id=CVE-2026-43146
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43146.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-43146
Downstream
Published
2026-05-06T11:27:29.562Z
Modified
2026-07-08T08:09:34.249004961Z
Summary
media: iris: Add buffer to list only after successful allocation
Details

In the Linux kernel, the following vulnerability has been resolved:

media: iris: Add buffer to list only after successful allocation

Move list_add_tail() to after dma_alloc_attrs() succeeds when creating internal buffers. Previously, the buffer was enqueued in buffers->list before the DMA allocation. If the allocation failed, the function returned -ENOMEM while leaving a partially initialized buffer in the list, which could lead to inconsistent state and potential leaks.

By adding the buffer to the list only after dma_alloc_attrs() succeeds, we ensure the list contains only valid, fully initialized buffers.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43146.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
73702f45db81b74897b2808aaa13484826156006
Fixed
45b30f65feeb4d5570d5337793bb0f298be813d2
Fixed
98b4c4c90f1e11caecbe2093dbe3a901d338bc81
Fixed
2d0bbd982dfdd67da488a772f7a8a1bdca7642bf

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43146.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.15.0
Fixed
6.18.16
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.6

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43146.json"