PT-2026-27670 · Linux · Linux
Published
2026-03-25
·
Updated
2026-03-25
·
CVE-2026-23305
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
In the Linux kernel, the following vulnerability has been resolved:
accel/rocket: fix unwinding in error path in rocket probe
When rocket core init() fails (as could be the case with EPROBE DEFER),
we need to properly unwind by decrementing the counter we just
incremented and if this is the first core we failed to probe, remove the
rocket DRM device with rocket device fini() as well. This matches the
logic in rocket remove(). Failing to properly unwind results in
out-of-bounds accesses.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux