CVE-2026-23033 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: omap-dma: fix dma_pool resource leak in error paths

The dma_pool created by dma_pool_create() is not destroyed when
dma_async_device_register() or of_dma_controller_register() fails,
causing a resource leak in the probe error paths.

Add dma_pool_destroy() in both error paths to properly release the
allocated dma_pool resource.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00032.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 8d66cb05b8b76396387a7b3a91f9284225c87f04
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 2b29f38f4f9660595e8272b8e8b82ffcca7ce592
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 6b867a98699657c2a698bbc9e60656349b39b905
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 88a9483f093bbb9263dcf21bc7fdb5132e5de88d
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 4b93712e96be17029bd22787f2e39feb0e73272c
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 829b00481734dd54e72f755fd6584bce6fbffbb0
`7bedaa5537604f34d1d63c5ec7891e559d2a61ed`	affected	< 2e1136acf8a8887c29f52e35a77b537309af321f

Linux

affected

Version	Status	Constraints
`3.6`	affected	—
`0`	unaffected	< 3.6
`5.10.249`	unaffected	≤ 5.10.*
`5.15.199`	unaffected	≤ 5.15.*
`6.1.162`	unaffected	≤ 6.1.*
`6.6.122`	unaffected	≤ 6.6.*
`6.12.67`	unaffected	≤ 6.12.*
`6.18.7`	unaffected	≤ 6.18.*
`6.19`	unaffected	≤ *

No data.

Project Subscriptions

Vendors	Products
Linux Subscribe	Linux Kernel Subscribe

Advisories

Source	ID	Title
Debian DLA	DLA-4475-1	linux security update
Debian DLA	DLA-4476-1	linux-6.1 security update
Debian DSA	DSA-6126-1	linux security update
Debian DSA	DSA-6127-1	linux security update

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/2b29f38f4f9660595e8272b8e8b82ffcca7ce592
https://git.kernel.org/stable/c/2e1136acf8a8887c29f52e35a77b537309af321f
https://git.kernel.org/stable/c/4b93712e96be17029bd22787f2e39feb0e73272c
https://git.kernel.org/stable/c/6b867a98699657c2a698bbc9e60656349b39b905
https://git.kernel.org/stable/c/829b00481734dd54e72f755fd6584bce6fbffbb0
https://git.kernel.org/stable/c/88a9483f093bbb9263dcf21bc7fdb5132e5de88d
https://git.kernel.org/stable/c/8d66cb05b8b76396387a7b3a91f9284225c87f04
https://lore.kernel.org/linux-cve-announce/2026013121-CVE-2026-23033-c543@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2026-23033
https://www.cve.org/CVERecord?id=CVE-2026-23033

History

Fri, 06 Feb 2026 16:45:00 +0000

Type	Values Removed	Values Added
References		https://git.kernel.org/stable/c/2b29f38f4f9660595e8272b8e8b82ffcca7ce592 https://git.kernel.org/stable/c/6b867a98699657c2a698bbc9e60656349b39b905 https://git.kernel.org/stable/c/8d66cb05b8b76396387a7b3a91f9284225c87f04

Mon, 02 Feb 2026 12:15:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2026013121-CVE-2026-23033-c543@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2026-23033 https://www.cve.org/CVERecord?id=CVE-2026-23033

Sat, 31 Jan 2026 12:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: dmaengine: omap-dma: fix dma_pool resource leak in error paths The dma_pool created by dma_pool_create() is not destroyed when dma_async_device_register() or of_dma_controller_register() fails, causing a resource leak in the probe error paths. Add dma_pool_destroy() in both error paths to properly release the allocated dma_pool resource.
Title		dmaengine: omap-dma: fix dma_pool resource leak in error paths
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/2e1136acf8a8887c29f52e35a77b537309af321f https://git.kernel.org/stable/c/4b93712e96be17029bd22787f2e39feb0e73272c https://git.kernel.org/stable/c/829b00481734dd54e72f755fd6584bce6fbffbb0 https://git.kernel.org/stable/c/88a9483f093bbb9263dcf21bc7fdb5132e5de88d

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-01-31T11:42:28.352Z

Updated: 2026-02-09T08:37:27.739Z

Reserved: 2026-01-13T15:37:45.942Z

Link: CVE-2026-23033

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2026-01-31T12:16:06.613

Modified: 2026-02-06T17:16:21.773

Link: CVE-2026-23033

Redhat

Severity :

Publid Date: 2026-01-31T00:00:00Z

Links: CVE-2026-23033 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

No weakness.

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object