CVE-2026-43432

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak exists in the xhci disable slot() function. The xhci alloc command() function allocates a command structure and, in certain cases, a completion structure. The error handling path in xhci disable slot() incorrectly uses kfree() to release only the command structure, leaving the completion structure allocated in memory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.