PT-2026-44294 · Opensuse+1 · Opensuse Tumbleweed+1
Published
2026-05-28
·
Updated
2026-06-11
·
CVE-2026-46171
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
openSUSE Tumbleweed versions prior to kernel-devel-7.0.11-1.1
Description
A memory leak occurs in the Linux kernel within the RISC-V KVM implementation. Specifically, in the
kvm riscv vcpu alloc vector context() function, if the second memory allocation for host context.vector.datap fails, the initial allocation for guest context.vector.datap is not released, leading to a leak.Recommendations
Update to a version where the
kvm riscv vcpu alloc vector context() function is patched to free the guest context.vector.datap allocation upon failure.
Update openSUSE Tumbleweed to version kernel-devel-7.0.11-1.1.Fix
Memory Leak
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Linux Kernel
Opensuse Tumbleweed