CVE-2026-43397

Source
https://cve.org/CVERecord?id=CVE-2026-43397
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43397.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-43397
Downstream
Published
2026-05-08T14:21:40.185Z
Modified
2026-07-08T08:13:29.401863812Z
Summary
drm/bridge: samsung-dsim: Fix memory leak in error path
Details

In the Linux kernel, the following vulnerability has been resolved:

drm/bridge: samsung-dsim: Fix memory leak in error path

In samsungdsimhostattach(), drmbridgeadd() is called to add the bridge. However, if samsungdsimregisterteirq() or pdata->hostops->attach() fails afterwards, the function returns without removing the bridge, causing a memory leak.

Fix this by adding proper error handling with goto labels to ensure drmbridgeremove() is called in all error paths. Also ensure that samsungdsimunregisterteirq() is called if the attach operation fails after the TE IRQ has been registered.

samsungdsimunregisterteirq() function is moved without changes to be before samsungdsimhost_attach() to avoid forward declaration.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43397.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
e7447128ca4a250374d6721ee98e3e3cf99551a6
Fixed
98310fe3a2a79671b739a5344c1a11d74c503e25
Fixed
0b07f7d2c5a4078c2f1c11bb36685084fe4e5c95
Fixed
e6d779654cda63d632bd8dfcdcabd125057e30a5
Fixed
a40b92fb4b26d4cb1b5e439e55a56db7e79a82d1
Fixed
803ec1faf7c1823e6e3b1f2aaa81be18528c9436

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43397.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.4.0
Fixed
6.6.130
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.78
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.19
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.9

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43397.json"